CyberHappenings logo

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

Blackmoon Malware Deployed in Indian Tax Phishing Campaign

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

A sophisticated cyber espionage campaign is targeting Indian users with phishing emails impersonating the Income Tax Department. The campaign deploys Blackmoon malware and repurposes a legitimate enterprise tool, SyncFuture TSM, to gain persistent access to victims' machines. The attackers use multiple techniques to evade detection, including DLL sideloading, UAC bypass, and antivirus evasion. The campaign has not been attributed to any known threat actor.

Timeline

  1. 26.01.2026 19:01 1 articles · 23h ago

    Blackmoon Malware Deployed in Indian Tax Phishing Campaign

    A sophisticated cyber espionage campaign is targeting Indian users with phishing emails impersonating the Income Tax Department. The campaign deploys Blackmoon malware and repurposes a legitimate enterprise tool, SyncFuture TSM, to gain persistent access to victims' machines. The attackers use multiple techniques to evade detection, including DLL sideloading, UAC bypass, and antivirus evasion.

    Show sources

Information Snippets