New Wave Of Cyber Attacks Target Palestine With Political Bait And Malware

 

Cybersecurity researchers have turned the spotlight on a new wave of offensive cyberattacks targeting Palestinian activists and entities starting around October 2021 using politically-themed phishing emails and decoy documents.

The intrusions are part of what Cisco Talos calls a longstanding espionage and information theft campaign undertaken by the Arid Viper hacking group using a Delphi-based implant called Micropsia dating all the way back to June 2017.

The threat actor's activities, also tracked under the monikers Desert Falcon and the APT-C-23, were first documented in February 2015 by Kasperksy and subsequently in 2017, when Qihoo 360 disclosed details of cross-platform backdoors developed by the group to strike Palestinian institutions.

The Russian cybersecurity company-branded Arid Viper the "first exclusively Arabic APT group."

Then in April 2021, Meta (formerly Facebook), which pointed out the group's affiliations to the cyber arm of Hamas, said it took steps to boot the adversary off its platform for distributing mobile malware against individuals associated with pro-Fatah groups, the Palestinian government organizations, military and security personnel, and student groups within Palestine.

                                    Decoy document containing text on Palestinian reunification

The raft of new activity relies on the same tactics and document lures used by the group in 2017 and 2019, suggesting a "certain level of success" despite a lack of change in their tooling. More recent decoy files reference themes of Palestinian reunification and sustainable development in the territory that, when opened, lead to the installation of Micropsia on compromised machines.

The backdoor is designed to give the operators an unusual range of control over the infected devices, including the ability to harvest sensitive information and execute commands transmitted from a remote server, such as capturing screenshots, recording the current activity log, and downloading additional payloads.

"Arid Viper is a prime example of groups that aren't very advanced technologically, however, with specific motivations, are becoming more dangerous as they evolve over time and test their tools and procedures on their targets," researchers Asheer Malhotra and Vitor Ventura said.

"These [remote access trojans] can be used to establish long-term access into victim environments and additionally deploy more malware purposed for espionage and stealing information and credentials."

Related news

1. Hacker Tools 2020
2. Pentest Recon Tools
3. Computer Hacker
4. Hacker Tools For Windows
5. Hacking Tools For Pc
6. Install Pentest Tools Ubuntu
7. Hacking Tools
8. Hacker Tools Hardware
9. Hacker
10. Pentest Tools For Ubuntu
11. Hacking Tools Kit
12. Hacking Tools Windows 10
13. Pentest Tools For Windows
14. Underground Hacker Sites
15. Hacker
16. Pentest Tools Github
17. Hacking Tools Mac
18. New Hacker Tools
19. Hackrf Tools
20. Usb Pentest Tools
21. Pentest Reporting Tools
22. Hacking Tools Usb
23. Hacking Tools For Windows 7
24. Pentest Tools Android
25. Pentest Tools Bluekeep
26. Pentest Tools Open Source
27. Hacker Tools List
28. Hacker Tools
29. Hacker Tools Mac
30. Pentest Tools Linux
31. Pentest Tools Nmap
32. Hak5 Tools
33. Pentest Automation Tools
34. Hacker Tools For Ios
35. Hacker Techniques Tools And Incident Handling
36. Android Hack Tools Github
37. Hacker Tool Kit
38. Hack Tools For Mac
39. Pentest Tools For Mac
40. Pentest Tools For Ubuntu
41. Hacker Tools Apk
42. Hacking Apps
43. Hacker Hardware Tools
44. Hacking Tools 2020
45. Hacking Tools For Pc
46. Best Pentesting Tools 2018
47. Pentest Tools Kali Linux
48. Pentest Tools For Android
49. Hack Rom Tools
50. What Are Hacking Tools
51. Pentest Tools Open Source
52. Termux Hacking Tools 2019
53. Hacking Tools For Beginners
54. Pentest Tools Subdomain
55. Hacker Tools Apk Download
56. Pentest Recon Tools
57. How To Hack
58. Hacking Tools 2020
59. Pentest Tools Port Scanner
60. How To Install Pentest Tools In Ubuntu
61. Hack App
62. Hacker Tools For Ios
63. Hack Rom Tools
64. Hacking Tools Mac
65. Hacking Tools Online
66. Hak5 Tools
67. Hacking Tools Download
68. Hacking Tools For Windows
69. Easy Hack Tools
70. Hacker Tools Linux
71. Pentest Tools Free
72. Hacker Tools Free Download
73. Hacker Tools For Pc
74. Pentest Tools Framework
75. Hack Rom Tools
76. Pentest Tools Kali Linux
77. Hacking Tools Download
78. New Hacker Tools
79. Pentest Tools Review
80. Pentest Tools Free
81. Hacker Tools Free Download
82. Tools Used For Hacking
83. Hacking Tools For Windows Free Download
84. Hack Tools For Windows
85. Tools 4 Hack
86. Hacker Tools Windows
87. Black Hat Hacker Tools
88. Hacker Tools
89. How To Make Hacking Tools
90. Hacking Tools Usb
91. Hacking Apps
92. Hacker Tools For Mac
93. Hacker Tools Online
94. Hacking Tools Kit
95. Hacker Tools Mac
96. Hacking Tools Windows 10
97. Pentest Tools Find Subdomains
98. Pentest Box Tools Download
99. Pentest Box Tools Download
100. Hacker Tools Windows
101. Pentest Tools For Android
102. Hacker Tools Linux
103. Hacking Tools For Windows
104. Kik Hack Tools
105. Pentest Tools Alternative
106. Usb Pentest Tools
107. Hack App
108. Hacker Tools For Mac
109. Hacker Tools Free Download
110. Hack App
111. Pentest Tools Open Source
112. Best Hacking Tools 2020
113. Pentest Tools Nmap
114. Hacker Tools Hardware
115. Hak5 Tools
116. Hacker
117. Hacking Tools For Kali Linux
118. Pentest Tools Find Subdomains
119. Pentest Tools For Mac
120. Hack Tools Github
121. Hacker Tools List
122. Hacking Tools For Windows Free Download
123. Blackhat Hacker Tools
124. Pentest Tools For Windows
125. Hack Tools 2019
126. Hacker Tools Windows
127. Pentest Tools For Windows
128. Hack Tools For Games
129. Hack Tools Pc
130. Hacking Tools For Windows Free Download
131. Pentest Tools Framework
132. How To Install Pentest Tools In Ubuntu
133. Hacking Tools Online
134. Pentest Tools Port Scanner
135. New Hacker Tools