Chinese 'Phantom Taurus' Hackers Deploy Advanced Net-Star Malware in Global Espionage Campaign

Discover how 'Phantom Taurus' uses unconventional tactics in espionage against global governments, posing threats with their Net-Star malware.

By Content Team

Oct 1, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

A Chinese state-sponsored group called 'Phantom Taurus' has been conducting sophisticated espionage operations against government and telecommunications organizations across Africa, the Middle East, and Asia for over two years. What makes this group unique is their use of unconventional tactics that differ from typical Chinese hacking methods, helping them stay under the radar.

The hackers recently deployed Net-Star, a powerful .NET malware suite that targets IIS web servers through three backdoors, including one that operates entirely in computer memory. They're particularly interested in diplomatic communications and defense intelligence, often timing their attacks around major global events. The group has successfully infiltrated email servers and databases at high-value targets like foreign ministries and embassies.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Iranian Hackers Breach US Airport, Bank, and Defense Contractor Networks

Mar 6, 2026

DarkSword iPhone Exploit Targets iOS 18

Mar 19, 2026

Kaiser Permanente Settles Privacy Breach for $46 Million - Here's How to Claim Your Share

Feb 4, 2026

AI-Powered 'Truman Show' Scam Creates Fake Investment Reality for Victims

Jan 9, 2026