The SideWinder Advanced Persistent Threat (APT) group is targeting high-level government institutions in South Asia, using Microsoft Office vulnerabilities to deliver malware. Specific organizations in Sri Lanka, Bangladesh, and Pakistan are receiving spear-phishing emails with geofenced payloads, allowing SideWinder to use remote code to execute malicious content. Despite these vulnerabilities being patched, outdated software configurations remain in government institutions, making them vulnerable to the sophisticated efforts of the SideWinder APT group.
Microsoft, DOJ take down Lumma Stealer malware sites
Microsoft, US Department of Justice and other international partners have dismantled the infrastructure behind the Lumma Stealer malware, which had infected almost 400,000 computers globally.
