Cybercriminals with suspected ties to Pakistan continue to rely on social engineering as part of an evolving espionage campaign against Indian targets, according to new research. The attacks have been linked to a group called Transparent Tribe, also known as Operation C-Major, APT36, and Mythic Leopard. The group has created fraudulent domains mimicking legitimate Indian military and defense organizations, and other fake domains posing as file-sharing sites to host malicious artifacts. These domains are used to deliver maldocs distributing CrimsonRAT, and ObliqueRAT.
Source: https://thehackernews.com/2021/05/pakistan-linked-hackers-added-new.html