Camaro Dragon APT Targets Foreign Affairs Organizations with Horse Shell Implants

What is Camaro Dragon?



Camaro Dragon is an alleged Chinese threat actor that has a keen interest in the foreign affairs of organizations within Europe. Their activities show similarities with the Chinese "Mustang Panda" APT group.






What is the Attack?



Camaro Dragon targeted European foreign affairs organizations using the Horse Shell backdoor malware hidden in modified firmware for TP-Link routers. While the initial infection vector has not been identified, the threat actor likely exploited vulnerabilities in TP-Link routers or leveraged …

actor apt attack chinese europe implants interest mustang panda organizations panda shell threat threat actor what is