Evasive Panda APT group delivers malware via updates for popular Chinese software 26 Apr 2023 https://www.welivesecurity.com/2023...oup-malware-updates-popular-chinese-software/ Long article with tech analysis at the Eset site. Read there more.
Seriously, these advanced supply chain attacks are getting out of hand. So the main leason is to not blindly trust any legitimate app, you should always keep monitoring them for suspicious behavior. And so much for the ''AV is all you need'' mantra, an AV really isn't good enough. You should also get a good behavior blocker with anti-logging and folder protection capabilities, because this would have easily stopped this MgBot infostealer.
With the constantly evolving groups working to circumvent Windows it's why i employ specialized third party security programs that prove themselves way better than any AV's and why i don't use them at all anymore. Nothing even remotely can approach my first lines of defense
