Operation FlightNight, identified by Dutch cybersecurity firm EclecticIQ in March 2024, has revealed a sophisticated cyber espionage campaign against Indian government entities and private energy companies. The attackers used phishing emails disguised as an Indian Air Force invitation to distribute a modified version of the HackBrowserData malware, leveraging Slack as a command-and-control channel for data exfiltration. Delivered via an ISO file with a hidden binary and a lure PDF, the malware aimed to steal sensitive data, including financial documents and employee details, totaling 8.81 GB from sectors like electronic communications and national defense. This campaign, similar to previous GoStealer efforts, shows a trend in using open-source tools and platforms like Slack for espionage, reducing detection risk and costs for attackers and highlighting the changing cyber threat landscape.
Government organizations are facing growing challenges in keeping pace with evolving cyber threats, highlighting a need for enhanced defensive capabilities. #Abatis addresses this challenge, offering a proven solution to block ALL malware, thus ensuring the security of digital environments and the protection of critical infrastructure.
