A new malware called GravityRAT has been discovered targeting Indian government organizations. The malware has been designed to steal confidential data from the infected systems. It is believed to be the work of a group of hackers known as ‘Dark Basin’.
GravityRAT is a Remote Access Trojan (RAT) that is spread through malicious emails. The emails contain malicious attachments that, when opened, will install the malware on the victim’s system. Once installed, GravityRAT can collect various types of data, including screenshots of the victim’s system, keystrokes, and clipboard content. It can also execute commands on the infected system and upload the collected data to a remote server.
The malware has been discovered targeting Indian government organizations, although it is likely that it is also targeting other organizations in the region. The attackers have used social engineering techniques to target the victims, including sending emails that appear to come from legitimate sources.
The security researchers have advised organizations to be cautious when opening emails, particularly those that appear to come from unknown sources. They have also suggested that organizations should use strong passwords, keep their systems updated, and use an anti-virus program to protect against malware.
The discovery of GravityRAT highlights the importance of being vigilant when it comes to cyber security. Organizations should ensure they have the necessary security measures in place to protect their systems from malicious attacks.