A new targeted phishing campaign has zoomed in on a two-factor authentication solution called Kavach that's used by Indian government officials.
Cybersecurity firm Securonix dubbed the activity STEPPY#KAVACH, attributing it to a threat actor known as SideCopy based on tactical overlaps with prior attacks.
".LNK files are used to initiate code execution which eventually downloads and runs a
