Category

Middle East

Middle East Page 1

Lyceum APT DNS Backdoor Telecom Energy Sectors Middle East Hijacking

Lyceum APT uses a DNS backdoor to hit the telecom and energy sectors

A state-backed APT group from Iran, Lyceum, has been utilising [.]NET-based DNS backdoor in targeting firms from the telecom and energy industries. Also known by their other names, Hexane and Spilrin, the Lyceum APT group had a history of attacking communication service companies from the Middle East through DNS-tunneling backdoors. From an analyst’s recent study...
Continue Reading
MyEasyDocs Exposed Data India Israel Students Microsoft Azure Misconfiguration

MyEasyDocs accidentally exposed data of Indian and Israeli students

An Indian-based online documents verification platform called MyEasyDocs has exposed the data of more than 57,000 students on a Microsoft Azure server. Based on a report, a cybersecurity researcher spotted a misconfigured Microsoft Azure server that exposed the educational and personal records of hundreds and thousands of students from Israel and India. MyEasyDocs own the...
Continue Reading
6 TB Data Breach Turkey Pegasus Airlines Exposed Data AWS S3 Bucket PegasusEFB

6.5TB data of Turkey-based Pegasus Airlines got exposed online

Cybersecurity researchers have found a data leak incident concerning a Turkey-based firm Pegasus Airlines, which exposed their AWS S3 bucket that contained EFB or Electronic Flight Bag data on the web. The researchers explained that the exposed data was left without password protection, thus resulting in the leak. The Turkish airline company has partnered with...
Continue Reading
Cobalt Mirage Threat Gang US Ransomware Attacks Malware Bitlocker Vulnerability Exploit

Cobalt Mirage gang found striking the US with ransomware attacks

The Iran-based Cobalt Mirage threat group investigation uncovered several critical details about their infrastructure, including being attributed to some known groups in the cybercrime landscape, such as the APT35. First surfacing in June 2020, Cobalt Mirage primarily conducts its attacks via phishing campaigns to access victims’ networks. Researchers linked the group to APT35 since they...
Continue Reading
CISA Critical Vulnerabilities Update Fix Oracle Linux Adobe Mozilla Treck Microsoft

CISA revealed 95 new critical vulnerabilities that firms must fix

The Certified Information Systems Auditor (CISA) has included 95 new critical flaws in the actively exploited security vulnerabilities. Based on reports, this update is one of the most significant clusters of CVEs added to CISA’s catalogue since the issue of the binding operational directive in late November 2021. CISA provided firms about a month to...
Continue Reading
Nvidia Stolen Code Signing Certificates Exploited Malware Attacks Windows OS

Nvidia’s stolen code signing certificates exploited in malware attacks

After threat actors reportedly attacked the tech firm Nvidia and stole 1TB worth of sensitive propriety data, researchers discovered that some of the stolen code signing certificates of the company are exploited to sign malware as trustworthy, which allows infected drivers to be installed in Windows computers. This recent attack incident is completed by the...
Continue Reading
Iranian Hackers Malware Middle East GRAMDOOR STARWHALE Spear Phishing Telegram

Iranian hackers used two new malware to target the Middle East

State-sponsored hackers from Iran has been operating two new malware threats called GRAMDOOR and STARWHALE to target unknown Middle Eastern entities and government. The Iranian hackers first used the malware in November last year, consisting of a simple backdoor functionality. Studies revealed that the recent attacks against Middle Eastern entities could be associated with UNC3313....
Continue Reading
NimbleMamba Malware Molerats APT Cyberattack Campaigns Middle East Phishing

NimbleMamba malware gets employed by the Molerats APT in campaigns

The Molerats advanced persistent threat group, also known as TA402, has bypassed researchers’ detection in their recent attack, revealing that the group has reemerged with its new malware strain named NimbleMamba. However, researchers believe that the NimbleMamba malware is more likely to be a recent version of the LastConn malware used by the Molerats group...
Continue Reading
Firms Iranian Cyber Firm Emennet FBI Iran Cybersecurity Alert Malware

Firms should avoid Iranian cyber firm Emennet, says FBI

The FBI released a private industry notification to warn industries and organisations about an Iran-based cyber company called Emennet Pasargad that operates malicious activities against them. According to the agency, the Iranian cyber firm has constantly rebranded its company to avoid the sanctions laid out by the US. The advisory released by the FBI also...
Continue Reading
Molerats APT Middle East Cyberespionage Cyberattack Campaign Backdoor

Molerats APT targets several nations in the Middle East

Recently, researchers have uncovered a new cyberespionage campaign conducted by an Arabic-speaking advanced persistent threat (APT) group called Molerats. The campaign has been identified to target victims within the Middle East since at least July of last year. The researchers added that their team has found a new campaign and provided a thorough technical assessment...
Continue Reading
1 2 3 19