Information about Suckfly attacks targeting Indian organizations

In March 2016, Symantec published a blog on Suckfly, an advanced cyberespionage group (http://www.symantec.com/connect/blogs/suckfly-revealing-secret-life-your-code-signing-certificates) that conducted attacks against a number of South Korean organizations to steal digital certificates. Since then we have identified a number of attacks over a two-year period, beginning in April 2014, which we attribute to Suckfly. The attacks targeted high-profile targets, including government and commercial organizations. These attacks occurred in several different countries, but our investigation revealed that the primary targets were individuals and organizations primarily located in India.