Silent Lynx APT Targets Kyrgyzstan and Neighboring Countries
/ 1 min read
🦁📡 Silent Lynx APT Launches Espionage Campaigns Against Kyrgyzstan and Neighbors. Seqrite Labs has identified a new threat group, dubbed Silent Lynx, which has targeted government entities in Kyrgyzstan, including the National Bank and the Ministry of Finance, using sophisticated phishing tactics. The group employs malicious ISO files and PowerShell scripts to execute remote access and data exfiltration via Telegram bots. Their campaigns leverage decoy documents that mimic legitimate communications to reduce suspicion. Notably, Silent Lynx shows similarities to the Kazakhstan-based YoroTrooper group, suggesting a shared operational framework and espionage objectives in Central Asia. The analysis highlights the group’s multi-stage attack strategy and reliance on Telegram for command and control, emphasizing the ongoing threat to regional security.
