The Reveal Platform
Intel Name: Apt36 phishing campaign targets indian defense using credential-stealing malware
Date of Scan: June 25, 2025
Impact: High
Summary: APT36, or Transparent Tribe, is a Pakistan-based threat group targeting Indian defense personnel via advanced phishing campaigns. They send emails with malicious PDFs mimicking government documents, leading to fake National Informatics Centre (NIC) login pages. Clicking the fake login triggers a download of a ZIP file containing disguised malware. This highlights APT36’s focus on credential theft and the need for strong email security and user awareness.
