Indian government entities and the defense sector have been targeted by a phishing campaign engineered to drop Rust-based malware for intelligence gathering, dubbed Operation RusticWeb by enterprise security firm SEQRITE. The activity, detected in October 2023, has been linked to Pakistani threat group SideCopy. The malware collects system information and exfiltrates confidential documents to a web-based service engine.

Phishing Campaign Uses Fake Invoice PDF to Drop AsyncRAT, VenomRAT, and XWorm
A sophisticated phishing campaign that uses a fake invoice PDF to mask the delivery of multiple remote access trojans primarily AsyncRAT, but also VenomRAT and


