SideWinder APT South Asian Territorial Themed Spear Phishing and Mobile Device Attacks
released on 2020-12-09 @ 05:20:32 PM
"While tracking the activities of the SideWinder group, which has become infamous for targeting the South Asia region and its surrounding countries, we identified a server used to deliver a malicious LNK file and host multiple credential phishing pages. We learned that these pages were copied from their victims’ webmail login pages and subsequently modified for phishing. We believe further activities are propagated via spear-phishing attacks."