SideWinder APT Targets with futuristic Tactics and Techniques

Cyble Research Team recently came across new malware variants related to SideWinder (aka Rattlesnake or T-APT-04) APT threat group. We noted that the group is targeting organizations through spam emails with maliciously crafted documents as well as through archived malicious link files.  SideWinder APT Background: It a known threat actor, who mainly targets Pakistan military and has been active since 2012.  In recent attacks, we have observed that SideWinder APT uses two different initial infection vectors.  1. Maliciously crafted document named “Protocol.doc” with …

SideWinder APT Targets with futuristic Tactics and Techniques Read More »