Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
APT36, a Pakistan-based cyber espionage group, is actively targeting Indian defense personnel through sophisticated phishing campaigns. The group disseminates emails with malicious PDF attachments resembling official government documents. When opened, these PDFs display a blurred background and a button mimicking the National Informatics Centre login interface. Clicking the button redirects users to a fraudulent URL and initiates the download of a ZIP archive containing a malicious executable disguised as a legitimate application. This campaign highlights APT36's focus on credential theft and long-term infiltration of Indian defense networks, emphasizing the need for robust email security, user awareness programs, and proactive threat detection systems.
OPENCTI LABELS :
phishing,pdf,credential theft,cyber espionage,transparent tribe,pakistan,indian defense
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
Phishing Campaign Targets Indian Defense Using Credential-Stealing Malware