Cybersecurity researchers have uncovered previously undocumented attack infrastructure used by the state-sponsored group SideWinder.
The phishing domains mimic various organizations in the news, government, telecommunications, and financial sectors.
Also uncovered is a Windows shortcut (LNK) file that was uploaded to VirusTotal from Beijing in late November 2022.
Like many other APT groups, the researchers said, SideWender relies on targeted spearphishing as the initial vector.
SideWinder has been known to be active since at least 2012.The group primarily leverages spearphousing as an intrusion mechanism to obtain a foothold into targeted environments.
Cybertronists have also uncovered a number of other samples of the sidewinder’s attack engine including a zip file titled Windows shortcut .exe.
๐ Feeling the vibes?
Keep the good energy going by checking out my Amazon affiliate link for some cool finds! ๐๏ธ
If not, consider contributing to my caffeine supply at Buy Me a Coffee โ๏ธ.
Your clicks = cosmic support for more awesome content! ๐๐
Leave a Reply