Transparent Tribe leverages intricate malware tactics, such as ElizaRAT and ApoloStealer, exploiting cloud-based communications for cyber attacks against high-profile Indian entities.
ElizaRAT samples indicate a systematic abuse of cloud-based services, including Telegram, Google Drive, and Slack, to facilitate command-and-control communications.
The increased targeting of Linux machines stems from India's adoption of a custom Ubuntu fork called Maya OS, affecting its government sectors significantly.
ApoloStealer is designed to gather multiple file types from compromised hosts and exfiltrate them, enhancing the threat capabilities of Transparent Tribe.
Collection
[
|
...
]