ShadyPanda is a threat actor. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does ShadyPanda exploit?

Specific CVE exploitation data for ShadyPanda is being tracked. Check the Strobes VI threat actor profile for updates.

ShadyPanda

Exploited CVEs

Overview

ShadyPanda is a threat actor behind a 7-year campaign that has infected 4.3 million users through extensions masquerading as productivity tools while functioning as comprehensive spyware. Their tactics include data exfiltration, user surveillance, and systematic collection of corporate meeting intelligence from over 28 video conferencing platforms. Notably, the WeTab extension exemplifies their capabilities, collecting full browsing history and personal data, exfiltrating to 17 different domains. The actor employs steganography to hide malicious code within PNG files and maintains persistent access through shared infrastructure across their extensions.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database