Fresh evidence emerged, that recently an Indian hacker is targeting Pakistan with its spy tool. Pointed to one of the well-known and prolific APT Advanced Persistent threats from India called SideWinder, increasing its cyber espionage work, according to Kaspersky’s Global Research and Analysis Team. The Indian team, which has now spread its reach in the Middle East, Africa, and Pakistan, has made use of the newly developed ‘StealerBot’ Spyware.
The SideWinder, or T-APT-04, known more colloquially as ‘RattleSnake,’ has been rather busy since 2012. It is one of the biggest and most well-known APT groups to have delved into cyber espionage. SideWinder has, on the whole, targeted military and governmental organizations in South and Southeast Asia, including Pakistan, Sri Lanka, China, and Nepal. According to Kaspersky now, the threat actor targets critical infrastructure and high-level organizations in neighboring regions.
StealerBot Spyware: A New Raging Danger
According to Kaspersky, the spyware developed by SideWinder was created with specific intelligence-gathering intentions. The spyware is designed in a modular format to accommodate various malicious types of functions. StealerBot’s capabilities include installing other malware, saving screenshots, recording keystrokes, stealing browser-based passwords, as well as intercepting Remote Desktop Protocol (RDP) log in credentials. Files are extracted from infected systems.
According to Giampaolo Dedola, lead researcher at Kaspersky, this StealerBot runs with a very high level of stealth. Its components are loaded straight into the computer’s memory and do not appear as any other regular files on the hard drive, which makes them hard to detect. This, therefore, makes StealerBot particularly troublesome for security teams to trace and remove from the system.
View Forex Rate and Gold Rate
