Blog Post on Cyber Attack Targeting Central Bureau of Investigation (CBI) and possibly Indian Army

[Monnappa K A]

Hi All,

I published a blog post today on an Cyber Espionage (APT) attack targeting Indian Investigation Agency "Central Bureau of Investigation (CBI)" and Possibly Indian Army officials to steal, spy or to take control of their systems. In order to infect the victims the attackers impersonated the identity of Indian think tank to distribute spear-phishing emails which dropped a malware capable of spying on infected systems. Below is the link to the blog post (containing full technical details of stealth techniques used by the attackers) and indicators. The indicators are provided so that the organizations can use the indicators to detect, investigate this attack campaign and remediate infected systems. We also reported this attack to the concerned teams. Hope you will like it.cheers

Below is the link to the blog post and indicators

https://cysinfo.com/cyber-attack-targeting-cbi-and-possibly-indian-army-officials/

Thanks,
Monnappa
@monnappa22