An unidentified threat actor compromised an application used by multiple entities in Pakistan to deliverShadowPad, a successor to the PlugX backdoor that’s commonly associated withChinese hacking crews. Targets included a Pakistan government entity, a public sector bank, and a telecommunications provider, according to Trend Micro. The infections took place between mid-February 2022 and