all InfoSec news
Transparent Tribe (APT36) | Pakistan-Aligned Threat Actor Expands Interest in Indian Education Sector
April 13, 2023, 10:01 a.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
Executive Summary
- SentinelLabs has been tracking a cluster of malicious documents that stage Crimson RAT, distributed by APT36 (Transparent Tribe).
- We assess that this activity is part of the group’s previously reported targeting of the education sector in the Indian subcontinent.
- We observed APT36 introducing OLE embedding to its typically used techniques for staging malware from lure documents and versioned changes to the implementation of Crimson RAT, indicating the ongoing evolution of APT36’s tactics and malware arsenal.
Overview
SentinelLabs has …
actor apt36 arsenal cluster distributed documents education education sector executive interest malicious malware malware analysis ole pakistan rat sector sentinellabs stage tactics targeting techniques threat threat actor tracking transparent tribe tribe
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Application Security Engineer - Remote Friendly
@ Unit21 | San Francisco,CA; New York City; Remote USA;
Cloud Security Specialist
@ AppsFlyer | Herzliya
Malware Analysis Engineer - Canberra, Australia
@ Apple | Canberra, Australian Capital Territory, Australia
Product CISO
@ Fortinet | Sunnyvale, CA, United States
Manager, Security Engineering
@ Thrive | United States - Remote