Cyber Threat Actor: @aparich95406002
| Actor Type | Location | Known Incidents |
Activist
|
India
|
0 incidents |
|---|
Profile
The threat actor is known by the alias @aparich95406002 and operates from India, as indicated in the provided context. A second alias, Bl@ck Dr@gon (also referenced as Bl@Ck Dr@GoN), appears in separate reporting and is described as a teenager from India. Both aliases refer to individuals who have conducted cyber activities that have been publicly reported. The actor associated with @aparich95406002 came to attention through a data breach involving the eSewa mobile wallet service. The actor using the Bl@ck Dr@gon alias identified themselves as part of a group called the Indian Hacker's Online Squad. No further personal details such as real name or age have been disclosed for the @aparich95406002 actor in the source material.
The @aparich95406002 actor targeted eSewa, an online payment platform that facilitates fund transfers and payments, resulting in the release of user details including email addresses, phone numbers and passwords obscured by asterisks. The breach was described by eSewa as possibly stemming from a phishing scam or a third‑party site compromise, though the actor’s specific initial access vector is not detailed in the articles. The Bl@ck Dr@gon actor focused on defacing Pakistani government websites, including the National Portal, Cabinet Ministry, Ministry of Defense and related sites, as well as the Pakistan Peoples Party’s website. The actor stated that the motivation for these actions was self‑expression in response to political statements, aiming to convey a message to both government and the public. Technical details shared by the actor and analysts indicate that the defacements were achieved by breaching a shared web server and adding a new page or entry through the site’s content management system or administration panel, with no mention of malware usage.
Affiliation information is limited to the Bl@ck Dr@gon actor’s claim of membership in the Indian Hacker's Online Squad and participation in a campaign referred to as Operation Pakistan (OpPakistan). No state linkage or criminal consortium affiliation is explicitly stated for either actor in the source material. Notable operations attributed to these actors include the eSewa data breach that exposed credentials of at least two dozen users and the series of website defacements under Operation Pakistan that targeted multiple Pakistani government domains. The Pakistan Peoples Party site defacement is also cited as a representative action undertaken by the Bl@ck Dr@gon actor. These activities represent the publicly reported campaigns linked to the aliases described.
