By Cluster25 Threat Intel Team
September 10, 2021

rattlesnake_1-4

Recent geopolitical events are leading to an increase in cyber operations in the Central Asian region. Among the actors involved in these activities there are certainly those believed to be close to the Indian government, such as RattleSnake. It is probably currently engaged in supporting a policy of raising the current Indian internal securiry levels through cyber-espionage operations against the defense and military sectors of countries deemed adverse.

C25 Intelligence has analyzed the entire chain of infection of a recent attack against Pakistani Navy attributed with a high degree of confidence to this threat actor.

Download Now »

You may also like

A not so Fancy game. Exploring the new “SkinnyBoy” Bear’s backdoor
A not so Fancy game. Exploring the new “SkinnyBoy” Bear’s backdoor
June 3, 2021

This paper presents an analysis of a new and never publicly reported malware internally dubbed as SkinnyBoy. Based on lo...

2021 Ransomware Bulletin: Recent, Past and Near Future of Cyber Extortion
2021 Ransomware Bulletin: Recent, Past and Near Future of Cyber Extortion
January 12, 2022

This past year 2021 was characterized by an increase in ransomware incidents, not only in regards to occurrence but also...

Welcome
Welcome
February 15, 2021

This is the welcome post for Cluster25 threat intelligence research blog.