The Overlapping Cyber Strategies Of Transparent Tribe And SideCopy Against India

Tags

External References

• https://cyble.com/
• https://otx.alienvault.com/

Description

CRIL's analysis revealed SideCopy APT group's sophisticated malware campaign, employing malicious LNK files and a complex infection chain involving HTAs and loader DLLs to deploy malware like ReverseRAT and Action RAT. SideCopy targets Indian universities and government entities, suggesting potential overlap with Transparent Tribe's tactics. The campaign leverages spam emails with malicious links to initiate infections and establish backdoor access for data exfiltration and remote control of victim systems. SideCopy demonstrates evolving techniques, demanding heightened cybersecurity vigilance to defend against persistent threats.

Date