Security News > 2022 > February > For past decade, this malware drops incriminating evidence on victims' PCs

For the past decade, unidentified miscreants have been planting incriminating evidence on the devices of human-rights advocates, lawyers, and academics in India to get them arrested.

ModifiedElephant prefers phishing with malicious Microsoft Office attachments to attack targets, and infect them with Windows malware.

A year ago, Arsenal Consulting, a US-based digital forensics firm, reported that the evidence against Wilson had been planted.

"The attacker responsible for compromising Mr. Wilson's computer had extensive resources and it is obvious that their primary goals were surveillance and incriminating document delivery."

"Arsenal has connected the same attacker to a significant malware infrastructure which has been deployed over the course of approximately four years to not only attack and compromise Mr Wilson's computer for 22 months, but to attack his co-defendants in the Bhima Koregaon case and defendants in other high-profile Indian cases as well."

The security firm also said that Wilson had been targeted by a second threat group, known as SideWinder [PDF], which has attacked government, military, and private sector organizations across Asia.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/02/10/modifiedelephant_fake_malware/