Hamas Hackers Sling Stealthy Spyware Across Egypt, Palestine

June 17, 2024 at 02:08AM Hamas-linked APT group Arid Viper uses Android spyware AridSpy distributed through Trojanized messaging apps. The malware targets Android users in Egypt and Palestine, collecting various data and enabling audio and visual surveillance. Ongoing AridSpy espionage campaigns are active, posing a continued threat. The group is continuously updating and maintaining the … Read more

Arid Viper Launches Mobile Espionage Campaign with AridSpy Malware

June 13, 2024 at 10:25AM The threat actor Arid Viper is behind a mobile espionage campaign using trojanized Android apps to distribute spyware called AridSpy. The campaign targets users in Palestine and Egypt through fake messaging and job opportunity apps. AridSpy is capable of downloading additional payloads and harvesting data from infected devices. From the … Read more

New Campaign Targets Middle East Governments with IronWind Malware

November 14, 2023 at 05:21AM Middle Eastern government entities are under attack from phishing campaigns deploying a new initial access downloader called IronWind. The campaigns, attributed to the threat actor TA402, have been active between July and October 2023. TA402, also known as Molerats, Gaza Cyber Gang, and APT-C-23, is a Middle Eastern APT group … Read more

Arid Viper Camouflages Malware in Knockoff Dating App

October 31, 2023 at 01:55PM APT group Arid Viper is targeting Arabic-speaking Android users with a fake dating app called Skipped. It collects sensitive user information by sharing malicious links disguised as updates. The attackers control the domains used in the campaign and have been active since April 2022. The malware can disable security notifications … Read more

Arid Viper Targeting Arabic Android Users with Spyware Disguised as Dating App

October 31, 2023 at 11:17AM A cyber espionage group known as Arid Viper has been identified as responsible for an Android spyware campaign targeting Arabic-speaking users. The campaign uses a counterfeit dating app to gather data from infected devices. The malware has features that allow for the collection of sensitive information and the deployment of … Read more