CyberWire Daily

APT36's cyber blitz on India. [Research Saturday]

Jun 29, 2024

Ismael Valenzuela, VP Threat Research & Intelligence at BlackBerry, discusses APT36's cyber attacks on India's government, defense, and aerospace sectors using evolving toolkits and exploiting web services like Telegram and Google Drive. Evidence suggests alignment with Pakistan's interests. The discussion covers Transparent Tribe's tactics, targeting strategies, diverse tools, and the geopolitical impact on cybersecurity defense.

20:53

Creator website

Episode guests

Ismael Valenzuela

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Transparent Tribe targets Indian government, defense, and aerospace sectors using evolving toolkits and exploiting web services like Telegram and Google Drive.

Organization should enhance security measures beyond Windows, considering protection for Linux and macOS, by developing a tailored threat model based on potential adversaries and implementing a holistic defense strategy.

Deep dives

Transparent Tribe - Targeting Indian Defense and Aerospace Sectors

Transparent Tribe, a group active for about a decade, employs open-source and commodity malware tools. They target India primarily using phishing and waterhole attacks, often leveraging fake social media profiles. Reports suggest a potential link to the Pakistani military, targeting government and human rights activists.

Intro

2min

Cyber Threats by Transparent Tribe

6min

Analysis of cyber tactics targeting India with diverse tools

2min

Geopolitical Impact on Cybersecurity Defense

5min

Cyber Blitz on India and Leveraging Cross-Platform Programming Languages

3min

Ismael Valenzuela, Vice President Threat Research & Intelligence, from Blackberry Threat Research and Intelligence team is discussing their work on "Transparent Tribe Targets Indian Government, Defense, and Aerospace Sectors Leveraging Cross-Platform Programming Languages." BlackBerry has identified Transparent Tribe (APT36), a Pakistani-based advanced persistent threat group, targeting India's government, defense, and aerospace sectors from late 2023 to April 2024, using evolving toolkits and exploiting web services like Telegram and Google Drive.

Evidence such as time zone settings and spear-phishing emails with Pakistani IP addresses supports their attribution, suggesting alignment with Pakistan's interests.

The research can be found here:

Transparent Tribe Targets Indian Government, Defense, and Aerospace Sectors Leveraging Cross-Platform Programming Languages

Learn more about your ad choices. Visit megaphone.fm/adchoices

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

CyberWire Daily

APT36's cyber blitz on India. [Research Saturday]

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Transparent Tribe - Targeting Indian Defense and Aerospace Sectors

Attack Tactics and Objectives of Transparent Tribe

Tools and Recommendations for Defense Against Transparent Tribe

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

CyberWire Daily

APT36's cyber blitz on India. [Research Saturday]

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Transparent Tribe - Targeting Indian Defense and Aerospace Sectors

Attack Tactics and Objectives of Transparent Tribe

Tools and Recommendations for Defense Against Transparent Tribe

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights