#1250783: Attacker Tracking Users Seeking Pakistani Passport - Additional IOCs
A few days ago we encountered a breach on a Pakistani government site which was compromised to deliver a dangerous payload- the Scanbox Framework. This compromise is exactly the kind of attack we were concerned about when discussing the danger in a previous compromise that we uncovered just a few weeks ago against another government site, at that time the Bangladesh Embassy in Cairo.
IPv4 22.214.171.124 6
URL http://126.96.36.199/ 0
URL http://188.8.131.52/i 0
URL http://184.108.40.206/i/?1 0
|Date added||March 14, 2019, 9:58 p.m.|