Targeting of the Burmese government and passport storage systems
Date of report
  • December 2022
Researchers discovered a compromised server being used by Mustang Panda as a temporary storage point for exfiltrated data, including recordings, webmail dumps, and scans of passports from American, Asian, and European citizens and diplomats applying for Burmese visas.
Suspected victims
  • Burmese government agencies, and individuals who traveled to and within Myanmar
Suspected state sponsor
  • Myanmar
Type of incident
  • Espionage
Target category
  • Government
  • Civil society
Victim government reaction
  • Unknown
Policy response