Suspected Indian state-sponsored threat operation SideWinder has been discovered to have an attack infrastructure with 55 phishing domains and IP addresses impersonating organizations in the government, news media, financial, and telecommunications sectors, according to The Hacker News. China, Pakistan, Afghanistan, Sri Lanka, Bangladesh, Singapore, Myanmar, Qatar, and the Philippines were the most frequent targets of SideWinder, which was observed to use domains masquerading Chinese, Pakistani, and Indian government agencies to deploy next-stage payloads, a joint Group-IB and Bridewell report revealed.

Read full article on SC Magazine