APT41, a state-sponsored threat actor, has been using innovative tactics to deliver malware, specifically a variant named "TOUGHPROGRESS," through exploited government websites and Google Calendar for command and control. Google Threat Intelligence Group has detailed the malware's infection chain, its evasion techniques, and the proactive measures taken to disrupt the campaign and protect affected organizations.