New Wave Of Cyber Attacks Target Palestine With Political Bait And Malware

 

Cybersecurity researchers have turned the spotlight on a new wave of offensive cyberattacks targeting Palestinian activists and entities starting around October 2021 using politically-themed phishing emails and decoy documents.

The intrusions are part of what Cisco Talos calls a longstanding espionage and information theft campaign undertaken by the Arid Viper hacking group using a Delphi-based implant called Micropsia dating all the way back to June 2017.

The threat actor's activities, also tracked under the monikers Desert Falcon and the APT-C-23, were first documented in February 2015 by Kasperksy and subsequently in 2017, when Qihoo 360 disclosed details of cross-platform backdoors developed by the group to strike Palestinian institutions.

The Russian cybersecurity company-branded Arid Viper the "first exclusively Arabic APT group."

Then in April 2021, Meta (formerly Facebook), which pointed out the group's affiliations to the cyber arm of Hamas, said it took steps to boot the adversary off its platform for distributing mobile malware against individuals associated with pro-Fatah groups, the Palestinian government organizations, military and security personnel, and student groups within Palestine.

                                    Decoy document containing text on Palestinian reunification

The raft of new activity relies on the same tactics and document lures used by the group in 2017 and 2019, suggesting a "certain level of success" despite a lack of change in their tooling. More recent decoy files reference themes of Palestinian reunification and sustainable development in the territory that, when opened, lead to the installation of Micropsia on compromised machines.

The backdoor is designed to give the operators an unusual range of control over the infected devices, including the ability to harvest sensitive information and execute commands transmitted from a remote server, such as capturing screenshots, recording the current activity log, and downloading additional payloads.

"Arid Viper is a prime example of groups that aren't very advanced technologically, however, with specific motivations, are becoming more dangerous as they evolve over time and test their tools and procedures on their targets," researchers Asheer Malhotra and Vitor Ventura said.

"These [remote access trojans] can be used to establish long-term access into victim environments and additionally deploy more malware purposed for espionage and stealing information and credentials."

Related links

1. Hacker Search Tools
2. Pentest Tools Github
3. Hacker Tools Windows
4. Install Pentest Tools Ubuntu
5. Game Hacking
6. Beginner Hacker Tools
7. Hacker Tools
8. Hacker Tools Windows
9. Tools Used For Hacking
10. Pentest Tools Linux
11. World No 1 Hacker Software
12. Hacking Tools For Windows
13. Hacking Tools For Windows 7
14. Nsa Hack Tools
15. Pentest Tools Download
16. Hacker Tools For Windows
17. Tools For Hacker
18. Pentest Tools Windows
19. Hacking Tools For Pc
20. Best Hacking Tools 2020
21. Pentest Tools For Windows
22. Pentest Reporting Tools
23. Free Pentest Tools For Windows
24. Pentest Tools Windows
25. Easy Hack Tools
26. Hacking Tools For Windows
27. Hacking Tools For Kali Linux
28. Tools Used For Hacking
29. Top Pentest Tools
30. Hacker Tools Mac
31. Wifi Hacker Tools For Windows
32. Wifi Hacker Tools For Windows
33. How To Hack
34. Hacking Tools Pc
35. Black Hat Hacker Tools
36. Hack Tool Apk
37. Beginner Hacker Tools
38. Hacker Tools Free Download
39. Hacking Tools And Software
40. Pentest Tools Bluekeep
41. Hack Tools For Mac
42. Hacking Apps
43. How To Install Pentest Tools In Ubuntu
44. Hack Tools For Windows
45. Hack Apps
46. Hacker Tool Kit
47. Hacking Tools Software
48. Termux Hacking Tools 2019
49. Kik Hack Tools
50. Easy Hack Tools
51. Pentest Tools Free
52. Hack Website Online Tool
53. What Are Hacking Tools
54. Pentest Tools Bluekeep
55. Hack Website Online Tool
56. Hacker Tools Apk Download
57. Hacker Tools Linux
58. Pentest Tools Download
59. Hack Tools For Mac
60. Hack Tools
61. Hackers Toolbox
62. Pentest Tools For Windows
63. Hacking Tools 2019
64. Hacker Tools Hardware
65. Pentest Tools Alternative
66. Pentest Tools Bluekeep
67. Pentest Tools Port Scanner
68. Hacker Tools Hardware
69. Usb Pentest Tools
70. Pentest Automation Tools
71. Hacking Tools Windows
72. World No 1 Hacker Software
73. Tools Used For Hacking
74. Computer Hacker
75. What Is Hacking Tools
76. Pentest Tools Bluekeep
77. Pentest Tools Open Source
78. Tools 4 Hack
79. Best Pentesting Tools 2018
80. Hacking Tools And Software
81. Hacking Tools For Windows 7
82. Hacking Tools Kit
83. Hacking Tools Windows
84. Hacking Tools For Mac
85. Hacker Tools For Ios
86. Hacking Tools For Windows 7
87. Hacker Tools Apk Download
88. Hacking Tools For Windows 7
89. Hack Tools For Ubuntu
90. Pentest Tools Subdomain
91. Hacker Tools
92. How To Hack
93. Hacking Tools Hardware
94. Pentest Tools Github
95. Hacker Tools Apk Download
96. Pentest Tools Framework
97. Pentest Tools Website
98. Hacker Tools Github
99. Hacker Tool Kit
100. Pentest Tools For Mac
101. Pentest Tools Website Vulnerability
102. Hacking Tools For Games
103. Hacking Tools For Pc
104. What Is Hacking Tools
105. Pentest Tools Bluekeep
106. Pentest Tools Website
107. Hackers Toolbox
108. Hack Tools For Pc
109. Hacks And Tools
110. Pentest Tools Tcp Port Scanner
111. How To Hack
112. Hacking Tools Free Download
113. Hacker Tools For Windows
114. What Are Hacking Tools
115. Pentest Tools Review
116. Pentest Tools Find Subdomains
117. Hack And Tools
118. Android Hack Tools Github
119. Pentest Automation Tools
120. Pentest Tools Url Fuzzer
121. Hacks And Tools
122. Hack Tools
123. Beginner Hacker Tools
124. Hacking Tools Windows 10
125. Pentest Tools Nmap
126. Hacking Tools For Games
127. Hacker Tools List