Two sophisticated campaigns by Silent Lynx, targeting Kyrgyzstan’s National Bank and Ministry of Finance with phishing emails containing malicious payloads, including PowerShell scripts and Golang implants. The group uses Telegram bots for command-and-control, delivering lures disguised as official documents to execute espionage and data exfiltration. Attribution suggests links to Kazakhstan-based YoroTrooper, indicating shared tools and motivations. These campaigns highlight Silent Lynx’s focus on Central Asian government and financial entities.
What’s new on HivePro
Get through updates and upcoming events, and more directly in your inbox