110 matches found
Russia-Linked Turla Exploits Pakistani Hackers' Servers to Target Afghan and Indian Entities
The Russia-linked advanced persistent threat APT group known as Turla has been linked to a previously undocumented campaign that involved infiltrating the command-and-control C2 servers of a Pakistan-based hacking group named Storm-0156 to conduct its own operations since 2022. The activity, firs...
APT-K-47 Uses Hajj-Themed Lures to Deliver Advanced Asyncshell Malware
The threat actor known as Mysterious Elephant has been observed using an advanced version of malware called Asyncshell. The attack campaign is said to have used Hajj-themed lures to trick victims into executing a malicious payload under the guise of a Microsoft Compiled HTML Help CHM file, the...
Pakistani Hackers Use DISGOMOJI Malware in Indian Government Cyber Attacks
A suspected Pakistan-based threat actor has been linked to a cyber espionage campaign targeting Indian government entities in 2024. Cybersecurity company Volexity is tracking the activity under the moniker UTA0137, noting the adversary's exclusive use of a malware called DISGOMOJI that's written ...
Facebook’s Official Page Hacked; Demand Release of Pakistani PM Imran Khan
By Waqas Facebooks official page was hacked on Facebook after bizarre posts, including demands for the release of ex-Pakistani PM… This is a post from HackRead.com Read the original post: Facebooks Official Page Hacked; Demand Release of Pakistani PM Imran Khan...
Fake YouTube Android Apps Used to Distribute CapraRAT
By Deeba Ahmed The group behind this attack is the infamous Pakistani threat actor known as Transparent Tribe. This is a post from HackRead.com Read the original post: Fake YouTube Android Apps Used to Distribute CapraRAT...
Pakistani Entities Targeted in Sophisticated Attack Deploying ShadowPad Malware
An unidentified threat actor compromised an application used by multiple entities in Pakistan to deliver ShadowPad, a successor to the PlugX backdoor that's commonly associated with Chinese hacking crews. Targets included a Pakistan government entity, a public sector bank, and a telecommunication...
Supply-Chain Attack Targeting Pakistani Government Delivers Shadowpad
We recently found that an MSI installer built by the National Information Technology Board NITB, a Pakistani government entity, delivered a Shadowpad sample, suggesting a possible supply-chain attack...
Possible Supply-Chain Attack Targeting Pakistani Government Delivers Shadowpad
We recently found that a modified installer of the E-Office app used by the Pakistani government delivered a Shadowpad sample, suggesting a possible supply-chain attack...
Pakistan-Origin SideCopy Linked to New Cyberattack on India's Ministry of Defence
An advanced persistent threat APT group that has a track record of targeting India and Afghanistan has been linked to a new phishing campaign that delivers Action RAT. According to Cyble, which attributed the operation to SideCopy , the activity cluster is designed to target the Defence Research...
Transparent Tribe Hackers Distribute CapraRAT via Trojanized Messaging Apps
A suspected Pakistan-aligned advanced persistent threat APT group known as Transparent Tribe has been linked to an ongoing cyber espionage campaign targeting Indian and Pakistani Android users with a backdoor called CapraRAT. "Transparent Tribe distributed the Android CapraRAT backdoor via...
NewsPenguin Threat Actor Unleashes Malicious Attacks on Pakistani Firms
Threat Level Actor Report For a detailed threat advisory, download the pdf file here Summary A recently identified adversary, referred to as NewsPenguin, has been associated with a sophisticated phishing campaign targeting Pakistani organizations. The attacker employs a highly intricate payload...
NewsPenguin Threat Actor Emerges with Malicious Campaign Targeting Pakistani Entities
A previously unknown threat actor dubbed NewsPenguin has been linked to a phishing campaign targeting Pakistani entities by leveraging the upcoming international maritime expo as a lure. "The attacker sent out targeted phishing emails with a weaponized document attached that purports to be an...
Transparent Tribe begins targeting education sector in latest campaign
Cisco Talos has been tracking a new malicious campaign operated by the Transparent Tribe APT group. This campaign involves the targeting of educational institutions and students in the Indian subcontinent, a deviation from the adversary's typical focus on government entities. The attacks result i...
SideWinder Hackers Use Fake Android VPN Apps to Target Pakistani Entities
The threat actor known as SideWinder has added a new custom tool to its arsenal of malware that's being used in phishing attacks against Pakistani public and private sector entities. "Phishing links in emails or posts that mimic legitimate notifications and services of government agencies and...
New CapraRAT Android Malware Targets Indian Government and Military Personnel
A politically motivated advanced persistent threat APT group has expanded its malware arsenal to include a new remote access trojan RAT in its espionage attacks aimed at Indian military and diplomatic entities. Called CapraRAT by Trend Micro, the implant is an Android RAT that exhibits a high...
BADNEWS! Patchwork APT Hackers Score Own Goal in Recent Malware Attacks
Threat hunters have shed light on the tactics, techniques, and procedures embraced by an Indian-origin hacking group called Patchwork as part of a renewed campaign that commenced in late November 2021, targeting Pakistani government entities and individuals with a research focus on molecular...
Researchers Detail How Pakistani Hackers Targeting Indian and Afghan Governments
A Pakistani threat actor successfully socially engineered a number of ministries in Afghanistan and a shared government computer in India to steal sensitive Google, Twitter, and Facebook credentials from its targets and stealthily obtain access to government portals. Malwarebytes' latest findings...
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
While investigating the Confucius threat actor, we found a recent spear phishing campaign that utilizes Pegasus spyware-related lures to entice victims into opening a malicious document downloading a file stealer...
BYKEA data breach: Pakistani ride-hailing app exposed 400m records
By Waqas According to researchers, BYKEA's 200 GB worth of database was exposed on an Elasticsearch server. This is a post from HackRead.com Read the original post: BYKEA data breach: Pakistani ride-hailing app exposed 400m records...
Database of 176 million Pakistani mobile phone users sold online
By Waqas The database contains personal data including full names, physical addresses, and phone numbers. This is a post from HackRead.com Read the original post: Database of 176 million Pakistani mobile phone users sold online...