Harvester APT Group Expands Espionage with New GoGra Linux Malware

The Harvester APT group has expanded its espionage operations by deploying a new Linux malware strain named GoGra, targeting systems in South Asia. The malware uses deceptive tactics, including fake PDF files and Microsoft APIs, to establish covert command-and-control (C2) communications. Security firms Carbon Black and Symantec identified the campaign, which focuses on regions including Afghanistan and India. GoGra is designed to evade detection while exfiltrating sensitive data from compromised Linux environments. No specific CVEs, attack timelines, or victim counts were disclosed in the report.