Title: The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Published:  Mon, 29 Dec 2025 10:00:35 +0000

Description: Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

Source: SECURELIST.COM