Patchwork Targets Bhutan with New Malware 1. The threat actor Patchwork is targeting entities linked to Bhutan using Brute Ratel C4 and PGoShell. 2. This marks Patchwork's first known use of the red teaming software, according to Knownsec 404. 3. Patchwork, also known as APT-C-09 and Dropping Elephant, is a state-sponsored actor likely from India. 4. Previous activities included spear-phishing attacks on China and Pakistan and using malware like VajraSpy. 5. The latest attack involves deploying a decoy PDF to install Brute Ratel C4 and PGoShell, with Nimbo-C2 for C2 functions. #patchwork #cyberattack #bruteratelc4 #pgoshell #apt #redteaming #cyberespionage #threatactor #statesponsored #cybersecurity #malware #nimboc2 #hacking #infosec #cyberthreats #spearphishing #remoteaccesstrojan #threatintel #patchworkapt #cyberdefense