A new campaign using trojanized variants of the two-factor authentication software Kavach targeted targeting Indian government entities has been connected to the threat actor known as Transparent Tribe. Sudeep Singh, a researcher with Zscaler ThreatLabz, stated in a Thursday investigation that this group “abuses Google Adwords for the aim of malvertising to distribute backdoored versions of Kavach multi-authentication applications.
According to the cybersecurity firm, the advanced persistent threat organisation has also carried out low-volume credential harvesting operations in which rogue websites impersonating legitimate Indian government portals were put up to trick unwary users into entering their passwords. Read More…