Cybersecurity researchers have turned the spotlight on a new wave of offensive cyberattacks targeting Palestinian activists and entities starting around October 2021 using politically-themed phishing emails and decoy documents.
The intrusions are part of what Cisco Talos calls a longstanding espionage and information theft campaign undertaken by the Arid Viper hacking group using a Delphi-based implant called Micropsia dating all the way back to June 2017.
The threat actor's activities, also tracked under the monikers Desert Falcon and the APT-C-23, were first documented in February 2015 by Kasperksy and subsequently in 2017, when Qihoo 360 disclosed details of cross-platform backdoors developed by the group to strike Palestinian institutions.
The Russian cybersecurity company-branded Arid Viper the "first exclusively Arabic APT group."
Then in April 2021, Meta (formerly Facebook), which pointed out the group's affiliations to the cyber arm of Hamas, said it took steps to boot the adversary off its platform for distributing mobile malware against individuals associated with pro-Fatah groups, the Palestinian government organizations, military and security personnel, and student groups within Palestine.
Decoy document containing text on Palestinian reunification
The raft of new activity relies on the same tactics and document lures used by the group in 2017 and 2019, suggesting a "certain level of success" despite a lack of change in their tooling. More recent decoy files reference themes of Palestinian reunification and sustainable development in the territory that, when opened, lead to the installation of Micropsia on compromised machines.
The backdoor is designed to give the operators an unusual range of control over the infected devices, including the ability to harvest sensitive information and execute commands transmitted from a remote server, such as capturing screenshots, recording the current activity log, and downloading additional payloads.
"Arid Viper is a prime example of groups that aren't very advanced technologically, however, with specific motivations, are becoming more dangerous as they evolve over time and test their tools and procedures on their targets," researchers Asheer Malhotra and Vitor Ventura said.
"These [remote access trojans] can be used to establish long-term access into victim environments and additionally deploy more malware purposed for espionage and stealing information and credentials."
Continue reading
- Hacking App
- New Hack Tools
- Wifi Hacker Tools For Windows
- Hacker Tools
- Hacking Tools Software
- Pentest Tools Find Subdomains
- Wifi Hacker Tools For Windows
- Pentest Tools Find Subdomains
- Hack Tools For Windows
- Hacker Tools Free Download
- Pentest Tools For Mac
- Pentest Automation Tools
- Hacker Tools Apk Download
- Hack Tool Apk
- Hack Tools Github
- Hacking App
- Hacking Tools Kit
- Hack Website Online Tool
- Hack And Tools
- Wifi Hacker Tools For Windows
- Github Hacking Tools
- Hacking Tools Windows
- Pentest Tools Linux
- Pentest Tools Github
- Kik Hack Tools
- Hack Tools
- Hack Tools 2019
- Hack Apps
- Hack Rom Tools
- New Hack Tools
- How To Hack
- Pentest Tools Open Source
- Pentest Tools Online
- Hack App
- Pentest Reporting Tools
- New Hack Tools
- New Hack Tools
- Pentest Tools Android
- Hacking Tools Kit
- Hacker Tools Hardware
- Hacker Tools For Mac
- Best Hacking Tools 2020
- Hacking Tools For Pc
- Hack App
- Growth Hacker Tools
- Hack Tools For Ubuntu
- Hacking Tools For Windows 7
- What Is Hacking Tools
- Hack Tools For Pc
- How To Hack
- Hacking Tools Online
- Hack Tools Download
- Hacker Hardware Tools
- Hacker Techniques Tools And Incident Handling
- Hacking App
- Hacking Tools Usb
- Pentest Tools For Ubuntu
- Hack Apps
- Pentest Tools Bluekeep
- Hack Tool Apk No Root
- Hacker Techniques Tools And Incident Handling
- Tools For Hacker
- Hacking Apps
- Underground Hacker Sites
- Hacker Tools Github
- Hack Tools Online
- New Hacker Tools
- Pentest Tools Android
- Hacking Tools Free Download
- Tools Used For Hacking
- Hacker Tools For Mac
- Hack Tools For Windows
- Pentest Recon Tools
- Android Hack Tools Github
- Hacker Tools For Mac
- Pentest Tools For Windows
- Hacker Tools 2019
- Hack Tools For Mac
- Github Hacking Tools
- Hack Tools For Mac
- Hacker Tools For Windows
- Hacker Tools 2020
- How To Make Hacking Tools
- Hack App
- Tools Used For Hacking
- Kik Hack Tools
- Hacker Tools Apk
- Hacking Tools Name
- Underground Hacker Sites
- Hack Tools Download
- New Hacker Tools
- Nsa Hack Tools
- Hacker Tools For Pc
- Hacker Tools For Pc
- Hacking Tools For Windows
- Hacking Tools For Beginners
- Hack Rom Tools
- Best Hacking Tools 2020
- Pentest Tools Open Source
- Hacker Tools 2020
- Hacking App
- Hacker Tools
- Pentest Tools Free
- Top Pentest Tools
- Hacking Tools 2019
- Hack Apps
- New Hacker Tools
- Hacking Tools
- Hacker Tools Hardware
- Pentest Tools Tcp Port Scanner
- Hacker Tools List
- Hack Apps
- Nsa Hacker Tools
- Pentest Tools Open Source
No hay comentarios:
Publicar un comentario