NewsPenguin Targets Pakistan with Sophisticated Espionage Tool
The NewsPenguin threat actor targeted Pakistani manufacturing, government, and military sectors with a spear-phishing attachment that pretended to be an exhibitor manual for PIMEC-23.
The document utilized remote template injection and malicious Visual Basic for Applications (VBA) macro code to carry out the infection process.
The final payload was an undocumented espionage tool that bypassed sandboxes and exfiltrated data from the infected system.
Featured Resources
Get Ready to Get MCPwned — Cymulate’s Elite CTF on Securing the Model Context Protocol
When AI agents meet the real world, every protocol becomes a potential attack vector. That’s the big idea behind MCPwned,
How a Retail Organization Became 12x Faster at Assessing Security Controls with Cymulate
Challenge This retail organization has a presence in 34 countries and over 5,800 stores. Its security team uses various controls
Ransomware Detection Techniques: A Smarter Approach to Staying Ahead of Attacks
Ransomware attacks continue to rise in both volume and sophistication, crippling organizations, exfiltrating sensitive data and costing billions annually in