You're listening to the Cyberwire Network, powered by N2K.

And now a word from our sponsor, Arcova, formerly Morgan Franklin Cyber.

Arcova is a global cybersecurity and AI consulting firm built by practitioners who've been in the seat.

They work directly with enterprise teams to solve complex security challenges,

building Secure by Design programs that hold up as technology and threats evolve.

From focused engagements to long-term partnership,

Arcova delivers outcomes that endure because no one should navigate complexity alone.

Learn why leading global enterprises trust Arcova at www.orgovna.com. That's A-R-C-O-V-A.com. Hello, everyone, and welcome to the CyberWire Research Saturday.

I'm Dave Bittner and this is our weekly

conversation with researchers and analysts tracking down the threats and vulnerabilities,

solving some of the hard problems and protecting ourselves in a rapidly evolving cyberspace.

Thanks for joining us.

So what brought this particular group to our attention was that we were tracking a rat, that's a remote access tool, known as get a rat.

And we started with that and we found some interesting samples.

Then we got more interesting samples, IPs,

and then we started with that to develop into a full-length investigation.

That's Santiago Ponteiroli, threat intelligence research lead from the Akronis True Team.

The research we're discussing today is titled

New Year, New Sector.

Transparent Tribe targets India's startup ecosystem.

But usually it starts that way with just a single indicator of compromise or maybe an indicator of the group using infrastructure from the past.

And what was it about this latest campaign from them that stood out compared to some of the things they've done in the past?

...