New Wave Of Cyber Attacks Target Palestine With Political Bait And Malware

 

Cybersecurity researchers have turned the spotlight on a new wave of offensive cyberattacks targeting Palestinian activists and entities starting around October 2021 using politically-themed phishing emails and decoy documents.

The intrusions are part of what Cisco Talos calls a longstanding espionage and information theft campaign undertaken by the Arid Viper hacking group using a Delphi-based implant called Micropsia dating all the way back to June 2017.

The threat actor's activities, also tracked under the monikers Desert Falcon and the APT-C-23, were first documented in February 2015 by Kasperksy and subsequently in 2017, when Qihoo 360 disclosed details of cross-platform backdoors developed by the group to strike Palestinian institutions.

The Russian cybersecurity company-branded Arid Viper the "first exclusively Arabic APT group."

Then in April 2021, Meta (formerly Facebook), which pointed out the group's affiliations to the cyber arm of Hamas, said it took steps to boot the adversary off its platform for distributing mobile malware against individuals associated with pro-Fatah groups, the Palestinian government organizations, military and security personnel, and student groups within Palestine.

                                    Decoy document containing text on Palestinian reunification

The raft of new activity relies on the same tactics and document lures used by the group in 2017 and 2019, suggesting a "certain level of success" despite a lack of change in their tooling. More recent decoy files reference themes of Palestinian reunification and sustainable development in the territory that, when opened, lead to the installation of Micropsia on compromised machines.

The backdoor is designed to give the operators an unusual range of control over the infected devices, including the ability to harvest sensitive information and execute commands transmitted from a remote server, such as capturing screenshots, recording the current activity log, and downloading additional payloads.

"Arid Viper is a prime example of groups that aren't very advanced technologically, however, with specific motivations, are becoming more dangerous as they evolve over time and test their tools and procedures on their targets," researchers Asheer Malhotra and Vitor Ventura said.

"These [remote access trojans] can be used to establish long-term access into victim environments and additionally deploy more malware purposed for espionage and stealing information and credentials."

More information

1. Hack Tools For Games
2. Hacker Tools Free
3. What Are Hacking Tools
4. Pentest Tools Url Fuzzer
5. Pentest Reporting Tools
6. Nsa Hack Tools Download
7. Hack App
8. Hackers Toolbox
9. Pentest Tools Url Fuzzer
10. Hacks And Tools
11. Tools 4 Hack
12. Hacker Search Tools
13. Hack Tools For Mac
14. Best Pentesting Tools 2018
15. Pentest Tools Website
16. Hacker Tools For Windows
17. Hacker Tools Apk
18. Hacking App
19. Pentest Tools Url Fuzzer
20. Hack Tools
21. Hacker Tools Apk
22. What Is Hacking Tools
23. Hack Tool Apk No Root
24. Hack Rom Tools
25. Termux Hacking Tools 2019
26. How To Install Pentest Tools In Ubuntu
27. Hacker Tools Free Download
28. Pentest Tools Android
29. Pentest Tools Port Scanner
30. Tools Used For Hacking
31. Hacker Tools List
32. Pentest Tools Free
33. Pentest Tools Website
34. Hack Tools Github
35. Nsa Hacker Tools
36. Hacker Tools For Mac
37. Hacking Tools Hardware
38. Beginner Hacker Tools
39. Hack Tools
40. Pentest Automation Tools
41. Hacking Tools Hardware
42. Hacker Tools Software
43. Hacker Tools Linux
44. Physical Pentest Tools
45. Pentest Tools Tcp Port Scanner
46. Hackrf Tools
47. Best Hacking Tools 2019
48. Hacking Tools Usb
49. Beginner Hacker Tools
50. Hack Tools Pc
51. Hackrf Tools
52. Hacking Tools For Kali Linux
53. Hack Tools For Games
54. Pentest Box Tools Download
55. Hacker Tools List
56. Hacking Tools For Beginners
57. Hacking Tools For Pc
58. Pentest Tools Open Source
59. Hacker Tools 2020
60. Hak5 Tools
61. Hacking Tools Name
62. Hacker Tools Free Download
63. Hacker
64. Easy Hack Tools
65. Tools For Hacker
66. Hacker Tools For Windows
67. Hack Apps
68. Pentest Automation Tools
69. Hacking Tools Github
70. Wifi Hacker Tools For Windows
71. Hacker Tools Free
72. Hacking Tools For Games
73. Github Hacking Tools
74. Kik Hack Tools
75. Hacker Tools For Ios
76. Hacker Tools For Ios
77. Pentest Tools
78. Hack Tools Github
79. Ethical Hacker Tools
80. Tools Used For Hacking
81. Nsa Hacker Tools
82. Hacking Tools Software
83. Hacking Tools Windows 10
84. Pentest Tools For Mac
85. Hacking Tools Mac
86. Hacker Tools For Ios
87. Android Hack Tools Github
88. Pentest Tools For Windows
89. Hack Tool Apk
90. Pentest Tools Apk
91. Hack Tools 2019
92. Beginner Hacker Tools
93. Pentest Tools Framework
94. Hacking App
95. Game Hacking
96. Computer Hacker
97. Hack Tools Github
98. Android Hack Tools Github
99. Hacking Tools Windows
100. Pentest Tools For Windows
101. Android Hack Tools Github
102. Hack Website Online Tool
103. Pentest Tools For Ubuntu
104. Pentest Tools Download
105. Pentest Tools For Windows
106. Pentest Tools Review
107. Hacker Tools 2019
108. Black Hat Hacker Tools
109. Hacker Tools Mac
110. Pentest Tools Nmap
111. How To Make Hacking Tools
112. Growth Hacker Tools
113. Hacker Security Tools
114. Hacking Tools 2020
115. How To Make Hacking Tools
116. Hacking Tools
117. Hacking Tools And Software
118. Nsa Hack Tools
119. Pentest Tools
120. Hacker Search Tools
121. Tools For Hacker
122. Bluetooth Hacking Tools Kali
123. Pentest Tools For Mac
124. Hacker Tools For Mac
125. Pentest Automation Tools
126. Hacker Tools Software
127. Pentest Tools Download
128. Hacking Tools For Beginners
129. Pentest Tools
130. Pentest Tools Website Vulnerability
131. Hacking Tools Pc
132. Hacker Tools Free
133. How To Hack
134. Hack Apps
135. Best Hacking Tools 2019
136. Pentest Reporting Tools
137. Hack App
138. Hacker Tools Online
139. Hacking Tools And Software
140. Pentest Tools For Windows