A cyber-espionage group has been observed increasingly targeting Indian government personnel as part of a broad campaign to infect victims with as many as four new custom remote access trojans (RATs) Cisco Talos said the intrusions culminate in the deployment of a variety of modular plugins, ranging from file enumerators to browser credential stealers and keyloggers (Xeytan and Lavao) The goal, it appears, is to steal access credentials from Indian government employees with a focus on espionage.
Source: https://thehackernews.com/2021/07/sidecopy-hackers-target-indian.html