September 26, 2024 at 07:51AM
French cybersecurity firm Sekoia discovered a long-running cyber espionage campaign, dubbed SilentSelfie, targeting Kurdish websites. The attacks aimed to steal sensitive information using a watering hole technique and various information-stealing frameworks. The campaign, of low sophistication, affected multiple Kurdish sites, indicating a new threat targeting the Kurdish community. The attackers’ identity remains unknown.
The meeting notes discuss a cyber espionage campaign called SilentSelfie targeting Kurdish minority websites. The attack has been ongoing for over a year and a half, compromising up to 25 websites. It involves the deployment of a malicious JavaScript to gather information from site visitors, as well as redirecting users to rogue Android APK files. Based on limited evidence, the Kurdistan Regional Government of Iraq is assessed to be the possible perpetrator. The attack is considered to be of low sophistication, suggesting it may be the work of a relatively new and uncovered threat actor.