December 15, 2023 at 01:58PM
The Gaza Cybergang, a pro-Hamas group, is using a new variant of the Pierogi++ backdoor malware to launch attacks on Palestinian and Israeli targets. The backdoor, based on C++ programming, has been distributed through phishing attacks and social media engagements, with consistent targeting of Palestinian entities reported by Sentinel Labs researchers. The group has been active in the Middle East for over a decade, with affiliates in various Arabic-speaking countries.
Summary of Meeting Notes:
– A group known as the Gaza Cybergang has been using a new variation of the Pierogi++ backdoor malware to launch attacks on Palestinian and Israeli targets.
– The backdoor is based on the C++ programming language and has been used in campaigns between 2022 and 2023.
– The attackers have also been using the Micropsia malware in recent hacking campaigns across the Middle East.
– The hackers distributed the Pierogi++ malware using archive files and malicious Office documents discussing Palestinian topics in both English and Arabic.
– The malware was deployed using Office macros and camouflaged as political documents on Palestinian affairs to deceive users.
– This new malware strain is an updated version of the Pierogi backdoor, with similarities but also some differences in functionality and coding.
– The Gaza Cybergang has been consistently targeting primarily Israeli and Palestinian entities and individuals, and has not increased its activity since the start of the Gaza conflict in October.
Let me know if you need any further information or assistance.