EN
EN DE
EN
EN DE
Contact Us
Sign Up
Topics
Finance & insurance
Trade
Industry
IT & Consulting
Tourism
Transport
Law
Public

Salt Typhoon Builds Out Malware Arsenal With GhostSpider

0
Share:

The Chinese threat actor known as Salt Typhoon has been spying on some high-value government and telecommunications organizations for several years now, recently debuting fresh backdoor malware, dubbed GhostSpider.

Salt Typhoon (aka Earth Estries, FamousSparrow, GhostEmperor, and UNC2286) is among the People’s Republic’s most cutting advanced persistent threats (APT). In a campaign stretching back to 2023, it has compromised more than 20 organizations. Those organizations tend to be of the highest order, from all corners of the globe, and their breaches have in some cases remained undetected for years. Most recently, it’s been known for targeting US telcos, including T-Mobile USA, and ISPs in North America.

Salt Typhoon’s Arsenal of Malware

With access to a targeted network, the APT that Trend Micro calls Earth Estries can deploy any one of its varied and powerful payloads, which it is consistently building out, according to a new analysis from the firm.

There’s Masol RAT — a cross-platform tool it’s used against Linux servers from Southeast Asian governments — and the modular SnappyBee (aka Deed RAT). The newly discovered GhostSpider, meanwhile, is a highly modular backdoor, adjustable for any particular attack scenario, according to Jon Clay, Trend Micro’s vice president of threat intelligence.

Nate Nelson

Leave a Comment

Your email address will not be published. Required fields are marked *

loader-image
London, GB
11:18 pm, Jun 27, 2025
weather icon 20°C
L: 18° | H: 21°
clear sky
Humidity: 76 %
Pressure: 1021 mb
Wind: 12 mph WSW
Wind Gust: 0 mph
UV Index: 0
Precipitation: 0 mm
Clouds: 4%
Rain Chance: 0%
Visibility: 10 km
Sunrise: 4:45 am
Sunset: 9:21 pm
DailyHourly
Daily ForecastHourly Forecast
Tomorrow 10:00 pm
weather icon
18° | 21°°C 0 mm 0% 11 mph 84 % 1025 mb 0 mm/h
Sun Jun 29 10:00 pm
weather icon
18° | 31°°C 0 mm 0% 7 mph 77 % 1026 mb 0 mm/h
Mon Jun 30 10:00 pm
weather icon
21° | 35°°C 0 mm 0% 9 mph 65 % 1021 mb 0 mm/h
Tue Jul 01 10:00 pm
weather icon
21° | 33°°C 0 mm 0% 10 mph 71 % 1016 mb 0 mm/h
Wed Jul 02 10:00 pm
weather icon
17° | 25°°C 1 mm 100% 13 mph 82 % 1017 mb 0 mm/h
Tomorrow 1:00 am
weather icon
19° | 20°°C 0 mm 0% 10 mph 78 % 1021 mb 0 mm/h
Tomorrow 4:00 am
weather icon
19° | 19°°C 0 mm 0% 9 mph 84 % 1022 mb 0 mm/h
Tomorrow 7:00 am
weather icon
20° | 20°°C 0 mm 0% 8 mph 83 % 1023 mb 0 mm/h
Tomorrow 10:00 am
weather icon
22° | 22°°C 0 mm 0% 9 mph 74 % 1024 mb 0 mm/h
Tomorrow 1:00 pm
weather icon
27° | 27°°C 0 mm 0% 11 mph 54 % 1024 mb 0 mm/h
Tomorrow 4:00 pm
weather icon
27° | 27°°C 0 mm 0% 11 mph 50 % 1023 mb 0 mm/h
Tomorrow 7:00 pm
weather icon
27° | 27°°C 0 mm 0% 10 mph 51 % 1023 mb 0 mm/h
Tomorrow 10:00 pm
weather icon
23° | 23°°C 0 mm 0% 8 mph 68 % 1025 mb 0 mm/h
Weather from OpenWeatherMap
Name Price24H (%)
Bitcoin(BTC)
€91,511.93
0.14%
Ethereum(ETH)
€2,068.31
0.33%
Tether(USDT)
€0.85
0.00%
XRP(XRP)
€1.84
1.51%
Solana(SOL)
€121.95
2.06%
USDC(USDC)
€0.85
0.01%
Dogecoin(DOGE)
€0.137610
0.77%
Shiba Inu(SHIB)
€0.000009
0.67%
Pepe(PEPE)
€0.000008
-0.87%
Risikomonitor
Know and monitor IT vulnerabilities with just one click before it is too late.

Utility link

Useful link

Newsletter

Follow Us

Facebook Twitter Youtube Linkedin

© 2025 risikomonitor.com gmbh

Scroll to Top