LuoYu, a Chinese-speaking APT now uses a malware called WinDealer
LuoYu, a Chinese-speaking advanced persistent threat (APT) has been seen using a harmful Windows tool, particularly known as WinDealer.
LuoYu is a threat performer which has been active since 2008. Consequently, this malware targets China, such as the China’s foreign diplomatic organizations, members of education community or the defense, logistics and telecommunications sectors. Also, this actor is capable of targeting Windows, Linux and macOS, as well as Android devices.
Russian cybersecurity’s company known as Kaspersky stated that this malware modifies the network traffic in-transit to insert malicious virus. He also warned that this type of attacks are very dangerous and devastating because they do not need any interaction with the target to make it infected.
WinDealer is a accessible malware platform which usually comes with all the bells and whistles which is linked with a traditional backdoor, allowing it to expel personal information, take the screenshots and also perform the random commands.