Indian security researchers on Saturday said they have detected a new wave of cyber attacks orchestrated by a notorious Pakistan-based group against the Indian Army and the education sector.
Transparent Tribe, a persistent threat group that originated in 2013 in Pakistan, has been targeting Indian government and military entities, according to the report by Seqrite, the enterprise arm of Pune-based Quick Heal Technologies.
The Pakistan-based group (dubbed as APT36) is using a malicious file titled "Revision of Officers posting policy" to lure the Indian Army into compromising their systems.
The file is disguised as a legitimate document, but it contains embedded malware designed to exploit vulnerabilities, the team noted.
Furthermore, the cyber-security team has also observed an alarming increase in the targeting of the education sector by the same threat actor.
Since May 2022, Transparent Tribe has been focusing on infiltrating prestigious educational institutions such as the Indian Institutes of Technology (IITs), National Institutes of Technology (NITs), and business schools.
These attacks intensified in the first quarter of 2023, reaching their peak in February.
"The subdivision of the Transparent Tribe, known as SideCopy, has also been identified targeting an Indian defence Organisation. Their modus operandi involves testing a domain hosting malicious file, potentially to serve as a phishing page," said the researchers.
This sophisticated tactic aims to deceive unsuspecting victims into divulging sensitive information.
APT36 has cleverly utilised malicious PPAM files masquerading as "Officers posting policy revised final".
A PPAM file is an add-in file used by Microsoft PowerPoint.
"These files exploit macro-enabled PowerPoint add-ons (PPAM) to conceal archive files as OLE objects, effectively camouflaging the presence of malware," said the report.
Seqrite recommended some preventive measures such as exercising caution while opening email attachments or downloading files, especially if they are unsolicited or from untrusted sources.
"Regularly update security software, operating systems, and applications to protect against known vulnerabilities. It is also important to implement robust email filtering and web security solutions to detect and block malicious content," the team advised.
11 illegal migrants held in February in Dharmanagar and Agartala
As per NFR, in an incident on 15th February RPF team of Agartala conducted a routine drive at Agartala Railway Station. While checking they detected 02 female Bangladeshi national sat the station.
State aims to install 50,000 solar plants in 2025: Power Minister
The present state government has set an ambitious goal of installing 50,000 solar plants across the state during the current financial year, Power Minister Ratan Lal Nath announced on Sunday.
Tension in Manipur districts after Meitei youth goes missing
A 20-year-old youth, belonging to the Meitei community has gone missing from Manipur’s Imphal triggering serious tension in both Imphal West and Imphal East districts, officials said on Monday night.
Vehicles burnt as violent clashes erupt in Nagpur, cops deployed
Amid raging controversy over the demolition of the Mughal emperor Aurangzeb’s grave situated at Sambhajinagar, violent clashes broke out between two groups in Maharashtra’s second capital Nagpur which led to stone pelting and arson.
PM Modi joins Trump-owned 'Truth Social' platform after US President shares podcast link
Prime Minister Narendra Modi on Monday joined US President Donald Trump-owned social media platform, Truth Social, following a post by the American leader. The post shared a video link of Prime Minister Modi's podcast with renowned US-based podcaster and computer scientist, Lex Fridman.
PM Modi meets Tulsi Gabbard, gifts her vase containing holy Ganga water from Maha Kumbh
Prime Minister Narendra Modi and United States Intelligence Chief Tulsi Gabbard met in the national capital on Monday, exchanging not just pleasantries but also gifts in the form of Ganga Jal (holy Ganga water) and a handcrafted mala.
Won't allow glorification of Aurangzeb's legacy, says Maha CM Fadnavis
Amid the chorus for the demolition of Mughal Emperor Aurangzeb’s grave situated in Sambhajinagar, Maharashtra Chief Minister Devendra Fadnavis on Monday said that it was unfortunate that the state government has to protect it.
No ‘Neja Mela’ in Sambhal: Police ban event organised in memory of Masud Ghazi
The 'Neja Mela', which is held every year in Sambhal, Uttar Pradesh, in memory of Saiyyad Salar Masud Ghazi, will not take place this time. The police have made it clear to the organisers that they will not allow the event to take place in the name of ‘robbers’.