Security researchers captured a batch of suspected Android-side attack samples of the SideWinder organization. Sidewinder (APT-Q-39, also known as SideWinder) is an APT organization suspected of having a South Asian background. Its attack activities can be traced back to 2012. The organization mainly targets Pakistan, China, Afghanistan, Nepal, Bangladesh and other countries.
ADVERSARY: SideWinder
INDUSTRIES: Government, Education, Defense
ATT&CK IDS: T1036 - Masquerading, T1071 - Application Layer Protocol, T1081 - Credentials in Files, T1503 - Credentials from Web Browsers, T1119 - Automated Collection, T1022 - Data Encrypted
Read More:
Kommentare