Silver Fox Group Deploys ABCDoor Malware via Tax-Themed Phishing
The Silver Fox cybercrime group is deploying a new malware called ABCDoor via tax-themed phishing campaigns targeting organizations in India and Russia.
The China-based cybercrime group known as Silver Fox has launched a new campaign targeting organizations in Russia and India using a previously undocumented malware strain dubbed ABCDoor. The group utilized sophisticated phishing tactics, specifically mimicking official correspondence from the Income Tax Department of India, to lure victims into executing the malicious payload [The Hacker News].
The campaign, which began in late 2025, targeted entities in both India and Russia with nearly identical methods. By masquerading as tax authorities, the attackers successfully deceived employees into opening malicious attachments, which then deployed the ABCDoor malware to establish a foothold within the target networks.
Organizations in the affected regions are advised to exercise extreme caution regarding unsolicited emails, particularly those claiming to be from government tax agencies. Security teams should implement strict email filtering, conduct user awareness training, and monitor for indicators of compromise associated with the ABCDoor malware to mitigate the risk of further infections.