SideWinder, a prolific nation-state actor mainly known for targeting Pakistan military entities, compromised the official website of the National Electric Power Regulatory Authority (NEPRA) to deliver a tailored malware called WarHawk. "The newly discovered WarHawk backdoor contains various malicious modules that deliver Cobalt Strike, incorporating new TTPs such as KernelCallBackTable injection
from The Hacker News https://ift.tt/BuY68Sn
https://ift.tt/64XlUHF
SideWinder APT Using New WarHawk Backdoor to Target Entities in Pakistan
October 24, 2022
0
Share your thoughts here.