United States of America: Justice Department and Federal Bureau of Investigation enforced ruling in investigation into PlugX malware

On 14 January 2025, the Justice Department and Federal Bureau of Investigation (FBI) enforced a court ruling in an investigation into PlugX malware. The Justice Department removed the malware from over 4’200 infected US computers. The operation, conducted in collaboration with international partners, including French law enforcement and the cybersecurity firm Sekoia.io, targeted a version of PlugX malware allegedly developed by the China-backed hacking group Mustang Panda. The malware had been used to infiltrate and control computers, primarily targeting US victims, European and Asian governments, businesses, and Chinese dissident groups. The FBI, through internet service providers, is notifying affected US computer owners and encouraging the use of anti-virus software and security updates to prevent reinfection.