GP A.I CyberSecurity Scoring
GP
Company Information
Website:http://www.hic-us.org
Employees number:5,274
Number of followers:0
NAICS:92812
Industry Type:International Affairs
Homepage:hic-us.org
GP Risk Score (AI oriented)
Between 800 and 849
GPInternational Affairs
Updated:
09/03/2026
09/03/2026
836/1000
Good
A
GP Global Score (TPRM)
xxxx
GPInternational Affairs
Score locked

GPGood
Current Score
836A (GOOD)
01000
1 incidents
0 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
837
JUNE 2026
836
MAY 2026
836
APRIL 2026
836
MARCH 2026
836
FEBRUARY 2026
836
JANUARY 2026
836
DECEMBER 2025
836
NOVEMBER 2025
835
OCTOBER 2025
835
SEPTEMBER 2025
835
AUGUST 2025
835
JANUARY 2025
837
Cyber Attack
01 Jan 2025 • GP
Government agencies in Bangladesh and Government agencies in Pakistan: SloppyLemming Cyber Attacks Hit Government and Infrastructure in Pakistan, Bangladesh
SloppyLemming Cyber Espionage Campaign Targets South Asian Governments and Critical Infrastructure
833
CRITICAL-4
GOV1772534265
SloppyLemming Cyber Espionage Campaign Targets South Asian Governments and Critical Infrastructure
A recent report by cybersecurity firm Arctic Wolf has linked the threat group SloppyLemming (also tracked as Outrider Tiger and Fishing Elephant) to a large-scale malware campaign targeting government agencies and critical infrastructure operators in Pakistan and Bangladesh between January 2025 and January 2026. The operation employed dual malware chains to conduct espionage and data theft, marking a significant evolution in the group’s tactics.
### Attack Methods and Malware Payloads
SloppyLemming deployed two distinct infection vectors:
1. BurrowShell Backdoor – Delivered via spear-phishing emails with malicious PDF attachments, this payload granted attackers full remote access, enabling file system control, screenshot capture, command execution, and network tunneling via a SOCKS proxy. Malicious traffic was disguised as legitimate Windows Update communications, using RC4 encryption to evade detection.
2. Rust-Based Keylogger – Embedded in macro-enabled Excel documents, this chain dropped a Rust-written keylogger alongside reconnaissance tools capable of port scanning and network enumeration, allowing attackers to gather sensitive data from compromised environments.
### Sophisticated Delivery and Infrastructure
The campaign leveraged spear-phishing emails with booby-trapped attachments, including ClickOnce manifests that executed DLL sideloading loading malicious code under the guise of trusted Microsoft .NET binaries. Additionally, SloppyLemming abused Cloudflare Workers domains (112 identified in the past year) to relay command-and-control (C2) traffic, complicating attribution and takedown efforts.
### Broader Threat Landscape
Active since at least 2022, SloppyLemming has a history of targeting government, law enforcement, energy, and telecommunications sectors across South and East Asia, including Sri Lanka, China, and Nepal. While the group is considered moderately capable, its use of custom malware (Ares RAT, WarHawk, Cloud Phish) and cloud-based exfiltration underscores the growing sophistication of cyber espionage in the region. Despite some operational security missteps, the dual-payload approach and abuse of legitimate cloud services highlight the persistent threat to regional governments and critical infrastructure.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for GP ??
What was GP's A.I Rankiteo Cyber Score in June 2026 ??
What was GP's A.I Rankiteo Cyber Score in May 2026 ??
What was GP's A.I Rankiteo Cyber Score in April 2026 ??
What was GP's A.I Rankiteo Cyber Score in March 2026 ??
What was GP's A.I Rankiteo Cyber Score in February 2026 ??
What was GP's A.I Rankiteo Cyber Score in January 2026 ??
What was GP's A.I Rankiteo Cyber Score in December 2025 ??
What was GP's A.I Rankiteo Cyber Score in November 2025 ??
What was GP's A.I Rankiteo Cyber Score in October 2025 ??
What was GP's A.I Rankiteo Cyber Score in September 2025 ??
What was GP's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on GP's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with GP ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view GP's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?