New Wave Of Cyber Attacks Target Palestine With Political Bait And Malware

 

Cybersecurity researchers have turned the spotlight on a new wave of offensive cyberattacks targeting Palestinian activists and entities starting around October 2021 using politically-themed phishing emails and decoy documents.

The intrusions are part of what Cisco Talos calls a longstanding espionage and information theft campaign undertaken by the Arid Viper hacking group using a Delphi-based implant called Micropsia dating all the way back to June 2017.

The threat actor's activities, also tracked under the monikers Desert Falcon and the APT-C-23, were first documented in February 2015 by Kasperksy and subsequently in 2017, when Qihoo 360 disclosed details of cross-platform backdoors developed by the group to strike Palestinian institutions.

The Russian cybersecurity company-branded Arid Viper the "first exclusively Arabic APT group."

Then in April 2021, Meta (formerly Facebook), which pointed out the group's affiliations to the cyber arm of Hamas, said it took steps to boot the adversary off its platform for distributing mobile malware against individuals associated with pro-Fatah groups, the Palestinian government organizations, military and security personnel, and student groups within Palestine.

                                    Decoy document containing text on Palestinian reunification

The raft of new activity relies on the same tactics and document lures used by the group in 2017 and 2019, suggesting a "certain level of success" despite a lack of change in their tooling. More recent decoy files reference themes of Palestinian reunification and sustainable development in the territory that, when opened, lead to the installation of Micropsia on compromised machines.

The backdoor is designed to give the operators an unusual range of control over the infected devices, including the ability to harvest sensitive information and execute commands transmitted from a remote server, such as capturing screenshots, recording the current activity log, and downloading additional payloads.

"Arid Viper is a prime example of groups that aren't very advanced technologically, however, with specific motivations, are becoming more dangerous as they evolve over time and test their tools and procedures on their targets," researchers Asheer Malhotra and Vitor Ventura said.

"These [remote access trojans] can be used to establish long-term access into victim environments and additionally deploy more malware purposed for espionage and stealing information and credentials."

More info

1. Hacker Tools For Windows
2. Hacker Tools List
3. Hacker Tools Free
4. Nsa Hack Tools
5. Hack Tools
6. Pentest Tools Free
7. Easy Hack Tools
8. Hack Website Online Tool
9. Hack Tools For Pc
10. Hacks And Tools
11. Usb Pentest Tools
12. Pentest Tools Github
13. Top Pentest Tools
14. Hack Tools
15. Hacking App
16. Hacking Tools For Windows 7
17. Hacker Tools Software
18. Hacking Tools Kit
19. How To Hack
20. Blackhat Hacker Tools
21. Hacking Tools For Kali Linux
22. Hacker Tools Online
23. Hack Tools For Ubuntu
24. Pentest Tools Port Scanner
25. Hacker Tools For Mac
26. Hack Tools For Games
27. Github Hacking Tools
28. Pentest Tools
29. Pentest Reporting Tools
30. New Hack Tools
31. Pentest Tools Apk
32. Hack Website Online Tool
33. Pentest Tools Android
34. Pentest Tools List
35. Hacker Tools For Ios
36. Hacker Techniques Tools And Incident Handling
37. Nsa Hacker Tools
38. Hacking Tools Pc
39. Pentest Tools Alternative
40. How To Hack
41. Pentest Tools List
42. Hacker Tools Free Download
43. Pentest Tools Windows
44. Hack Rom Tools
45. Hacking Tools And Software
46. Hack Tool Apk No Root
47. Pentest Tools Subdomain
48. Pentest Tools
49. Pentest Tools Website
50. Hacking Tools Kit
51. Hacker Tools List
52. Tools For Hacker
53. Hacks And Tools
54. Hacker Tools Software
55. Hacking Tools Github
56. Hacker Tools Online
57. Hackrf Tools
58. Github Hacking Tools
59. Hack Tools For Games
60. Pentest Tools Review
61. Hacking Tools Hardware
62. Hacking Tools Software
63. Hacking Tools Name
64. Hacking Tools Usb
65. Pentest Reporting Tools
66. Hack Tools For Ubuntu
67. Hacker Tools Linux
68. Hacker Hardware Tools
69. Pentest Tools Github
70. Pentest Tools
71. Hacker Tools For Mac
72. Hacker Tools Online
73. Pentest Tools Apk