> TritonInfoSec News
Home / Jun 06, 2026 / Story
0
#3 BleepingComputer general June 05, 2026 at 18:09 UTC

Chinese APT deploys new malware to keep access to hacked networks

By Bill Toulas

AI Summary

Chinese espionage group UNC5221 has been deploying two newly documented malware families — Plenet and AgentPSD — alongside the previously known Brickstorm backdoor to maintain persistent access to Microsoft 365 environments. This represents a significant evolution in UNC5221's post-compromise toolkit targeting M365 tenants.

Read full article → https://www.bleepingcomputer.com/news/security/chi…

Relevance score: 84.0/100

# More from June 06

  1. 1
    Cisco warns of unpatched SD-WAN zero-day exploited in attacks BleepingComputer
  2. 2
    Chrome 149 Patches 429 Vulnerabilities SecurityWeek
  3. 4
    IronWorm and New Miasma Worm Variant Hit npm in Supply Chain Attacks The Hacker News
  4. 5
    Hackers Exploit Critical Everest Forms Pro WordPress Plugin Flaw to Take Over Sites The Hacker News
  5. 6
    Cisco warns of critical Unified CM flaw with PoC exploit code BleepingComputer
  6. 7
    Hackers Spied on a Stock Exchange Executive's Outlook Mailbox for Five Months The Hacker News
  7. 8
    CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers BleepingComputer
  8. 9
    Claude Code GitHub Action Flaw Let One Malicious Issue Hijack Repositories The Hacker News
  9. 10
    Five Eyes: Chinese Spies Target Government, Military Staff With Fake Job Opportunities SecurityWeek