Researchers Warn of ReverseRAT Backdoor Targeting Indian Government Agencies

Thread starter silversurfer
Start date Feb 21, 2023

silversurfer

Level 85

Thread author

Verified

Honorary Member

Top Poster

Content Creator

Malware Hunter

Well-known

Feb 21, 2023

#1

Content source: https://thehackernews.com/2023/02/researchers-warn-of-reverserat-backdoor.html

A spear-phishing campaign targeting Indian government entities aims to deploy an updated version of a backdoor called ReverseRAT.

Cybersecurity firm ThreatMon attributed the activity to a threat actor tracked as SideCopy.

"Once ReverseRAT gains persistence, it enumerates the victim's device, collects data, encrypts it using RC4, and sends it to the command-and-control (C2) server," the company said in a report published last week.
"It waits for commands to execute on the target machine, and some of its functions include taking screenshots, downloading and executing files, and uploading files to the C2 server."

thehackernews.com

Researchers Warn of ReverseRAT Backdoor Targeting Indian Government Agencies

A Pakistani threat group called SideCopy is suspected of being behind the spear-phishing campaign targeting Indian government entities.

thehackernews.com

thehackernews.com

Reactions: Fel Grossi, vtqhtr413, brambedkar59 and 5 others

You must log in or register to reply here.

Similar threads

China-Linked Actor Taps Linux Backdoor in Forceful Espionage Campaign

Replies: 0

Views: 1,183

News Archive Sep 21, 2023

silversurfer

Beware: New 'Rustbucket' Malware Variant Targeting macOS Users

Replies: 0

Views: 1,101

News Archive Jul 1, 2023

MuzzMelbourne

Cybersecurity Agencies Sound Alarm on Rising TrueBot Malware Attacks

Replies: 0

Views: 1,209

News Archive Jul 7, 2023

silversurfer

Top