Indian government entities and the defense sector have been targeted by a phishing campaign engineered to drop Rust-based malware for intelligence gathering, dubbed Operation RusticWeb by enterprise security firm SEQRITE. The activity, detected in October 2023, has been linked to Pakistani threat group SideCopy. The malware collects system information and exfiltrates confidential documents to a web-based service engine.

SuperBlack Actors Exploiting Two Fortinet Vulnerabilities to Deploy Ransomware
Cybersecurity researchers at Forescout’s Vedere Labs identified attacks by a new threat actor, Mora_001, exploiting critical Fortinet vulnerabilities to deploy custom ransomware called “SuperBlack.” The