ADVERTISEMENT

Unheard of: Chinese hackers use Google Calendar to control malware and steal data

Chinese state-sponsored cyber espionage group APT41, also known as HOODOO, abused Google Calendar as a command and control tool. The specialized malware stored encrypted commands and exfiltrated data as calendar events.

Google Calendar used as command and control

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
May 29, 2025 Updated: 29 May 2025 2 min read

How does the attack work?

apt41-using-google-callendar
ADVERTISEMENT
apt41-attack-chain
Marcus Walsh Gintaras Radauskas Paulius Grinkevičius B&W Ernestas Naprys
Don’t miss our latest stories on Google News
Add us as your Preferred Source on Google.
ADVERTISEMENT