China APT Stole Geopolitical Secrets From Middle East, Africa & Asia

May 23, 2024 at 06:12AM A Chinese state-aligned threat group, known as Diplomatic Specter, has been conducting a brazen espionage campaign across the Middle East, Africa, and Southeast Asia since late 2022. They target high-level government and military entities to obtain sensitive information. The group exploits vulnerabilities, uses various malicious tools, and exfiltrates emails and … Read more

‘DuneQuixote’ Shows Stealth Cyberattack Methods Are Evolving. Can Defenders Keep Up?

May 2, 2024 at 01:09AM A recent cyber-espionage campaign targeting Middle Eastern government entities highlights the need for improved malware detection capabilities. Attackers continually adapt to cybersecurity tooling, using both classic and novel stealth techniques. The “DuneQuixote” campaign exemplifies this with two droppers and payloads, employing deception tactics to evade detection. Advanced stealth tactics can … Read more

Hackers Target Middle East Governments with Evasive “CR4T” Backdoor

April 19, 2024 at 02:45AM Government entities in the Middle East are targets of cyber espionage through a new backdoor named CR4T. Russian cybersecurity firm Kaspersky discovered the activity in February 2024 and uncovered a previously undocumented campaign codenamed DuneQuixote. The attackers exhibit advanced evasion capabilities and techniques through various methods to establish persistence. (Words: … Read more

United Arab Emirates Faces Intensified Cyber-Risk

March 21, 2024 at 01:04AM The UAE is a frontrunner in digital transformation in the Middle East, but faces security challenges due to slow patching and legacy technology. It seems from the meeting notes that the UAE is leading digital-transformation efforts in the Middle East. However, it is facing challenges due to slow patching and … Read more

Iranian Hackers Target Middle East Policy Experts with New BASICSTAR Backdoor

February 18, 2024 at 11:57PM Charming Kitten, an Iranian-origin threat actor also known as APT35, has been linked to new attacks aimed at Middle East policy experts using a new backdoor called BASICSTAR through a fake webinar portal. The group, affiliated with Iran’s Revolutionary Guard Corps, uses a range of social engineering tactics, including phishing … Read more

Iran’s ‘Cyber Centers’ Dodge Sanctions to Sell Cyber Operations

January 29, 2024 at 12:47PM Middle Eastern cybersecurity firms, connected to Iranian government and specialists, are implicated in cyber attacks on Western democracy, critical infrastructure, and financial institutions. The leaked data points to a network of contractors linked to Iran’s military and intelligence, with expectations of continued operations despite sanctions. Similar arrangements are seen in … Read more

Administrator Account For Middle East Internet Registry Hacked

January 4, 2024 at 01:32PM RIPE, the Regional Internet Registry for Europe, the Middle East, and Central Asia, is investigating a compromised administrator account that disrupted network traffic. The compromise affected some services and potentially other accounts, prompting RIPE to contact affected account holders. Additionally, a threat actor announced unauthorized access to a RIPE administrator … Read more

UAE Banks on AI to Boost Cybersecurity

December 29, 2023 at 07:04AM The UAE faces relentless cyberattacks due to its aggressive push for a digitized economy. To counter this, it has strengthened its digital borders, forming cybersecurity partnerships with the US, Morocco, and Chad. With a focus on AI, the UAE is also addressing the need for skilled professionals and the potential … Read more

Strengthening Resilience: Navigating the Cybersecurity Landscape

December 22, 2023 at 12:07PM Businesses worldwide face a surge in cyber threats, with ransomware attacks increasing by over 1,000% since 2019. Aon’s global survey identifies cyberattacks as the top risk for organizations, leading to a shift in cybersecurity investment in the Middle East. Organizations must prioritize a holistic, proactive approach to cyber resilience, including … Read more

UAE to Chair World Bank’s Cloud Computing Working Group

December 15, 2023 at 11:19AM The UAE has been appointed as the chair of the World Bank’s Cloud Computing Working Group, acknowledging its cybersecurity support for entities moving to cloud systems. Despite the projected growth of the Middle East public cloud market, cybersecurity threats remain a concern. Dr. Bushra AlBlooshi highlights the UAE’s leading role … Read more