Utopia Tech
Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT
SecurityAI-assisted1 min read

Pakistan-Linked SideCopy Targets Afghanistan Finance Ministry with Xeno RAT

The Pakistan-aligned threat actor SideCopy has launched a targeted spear-phishing campaign against Afghanistan's Ministry of Finance, deploying the open-source Xeno RAT malware. The attack vector involves a ZIP archive containing a malicious LNK file with a Pashto-language filename designed to deceive targets into execution.

UT

Utopia Tech

June 2, 2026 · 1 min read

Share

Cybersecurity researchers have disclosed details of a spear-phishing campaign likely undertaken by the Pakistan-aligned SideCopy group targeting Afghanistan's Ministry of Finance with an open-source remote access trojan called Xeno RAT. "The campaign opens with a spear phishing delivery - a ZIP archive containing a malicious LNK file bearing a carefully crafted Pashto-language filename,"

Originally published at thehackernews.com

#Apt#Cybersecurity#Government-Sector#Malware#Remote-Access-Trojan#Spear-Phishing#Vulnerabilities
Share
▸ Want a deeper look?

Talk to an architect about applying this to your stack.

60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.

Schedule the call
▸ Continue reading

More from the journal

AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.
Security

AI-Driven Exploitation is Destroying Vulnerability Management. Here’s How to Handle It.

1 min read

Beyond Assume-Breach: How AI-Native Security Will Reshape Enterprise Defense
Security

Beyond Assume-Breach: How AI-Native Security Will Reshape Enterprise Defense

1 min read

How Leading Organizations Are Turning EDR Into Operational Resilience
Security

How Leading Organizations Are Turning EDR Into Operational Resilience

1 min read

All posts
Skip to main content