Lucene search
+L

5 matches found

The Hacker News
The Hacker News
added 2025/10/28 4:1 a.m.5 views

SideWinder Adopts New ClickOnce-Based Attack Chain Targeting South Asian Diplomats

A European embassy located in the Indian capital of New Delhi, as well as multiple organizations in Sri Lanka, Pakistan, and Bangladesh, have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder in September 2025. The activity "reveals a notable evolution in...

6.5AI score
Exploits0
Trellix
Trellix
added 2025/10/22 12:0 a.m.11 views

SideWinder's Shifting Sands: Click Once for Espionage

SideWinder's Shifting Sands: Click Once for Espionage By Ernesto Fernández Provecho and Pham Duy Phuc · October 22, 2025 In September 2025, the Trellix Advanced Research Center ARC detected a campaign targeting a European embassy located in New Delhi, India. Further investigation led to the...

9.3CVSS8.5AI score0.99933EPSS
Exploits29
The Hacker News
The Hacker News
added 2025/05/20 10:57 a.m.41 views

South Asian Ministries Hit by SideWinder APT Using Old Office Flaws and Custom Malware

High-level government institutions in Sri Lanka, Bangladesh, and Pakistan have emerged as the target of a new campaign orchestrated by a threat actor known as SideWinder. "The attackers used spear phishing emails paired with geofenced payloads to ensure that only victims in specific countries...

7.8CVSS8.2AI score0.99945EPSS
Exploits62
The Hacker News
The Hacker News
added 2024/10/17 10:15 a.m.63 views

SideWinder APT Strikes Middle East and Africa With Stealthy Multi-Stage Attack

An advanced persistent threat APT actor with suspected ties to India has sprung forth with a flurry of attacks against high-profile entities and strategic infrastructures in the Middle East and Africa. The activity has been attributed to a group tracked as SideWinder, which is also known as...

9.3CVSS8.8AI score0.99945EPSS
Exploits33
Securelist
Securelist
added 2024/10/15 10:0 a.m.95 views

Beyond the Surface: the evolution and expansion of the SideWinder APT group

SideWinder, aka T-APT-04 or RattleSnake, is one of the most prolific APT groups that began its activities in 2012 and was first publicly mentioned by us in 2018. Over the years, the group has launched attacks against high-profile entities in South and Southeast Asia. Its primary targets have been...

7.8CVSS8.4AI score0.99945EPSS
Exploits33
Rows per page
Query Builder