New 'Mistic' backdoor malware targeting corporate networks
UNVERIFIED·Primary source · The Register
A new self-destructing backdoor called 'Mistic' (or MLTBackdoor) has been identified in intrusions.
It is linked to the initial access broker 'KongTuke' (Woodgnat).
The malware operates in memory to evade detection and is used to facilitate ransomware attacks.
Key Facts
01
01 — What / Thesis
New 'Mistic' backdoor malware targeting corporate networks
02
02 — Who / Subject
Symantec, Carbon Black, Zscaler
03
03 — Where / Locus
Global
04
04 — When / Temporality
June 2026
AI Verification Note
This article is generated by cross-referencing multiple sources and official announcements. Parts relying solely on testimony or reporting are reflected in the confidence score; content and assessment are updated as new information is confirmed.
