Iranian APT Group targets Kuwait and Saudi Arabia , hackers

Iranian APT Group targets Kuwait and Saudi Arabia


Iranian APT Group Targets Governments in Kuwait and Saudi Arabia

An Iranian cyber espionage conducted by Chafer APT Group against the government in Kuwait and Saudi Arabia 

Report: Iranian APT Actors Regroup After Main Security Forum Shuts ...

Target sectors: While APT39's targeting scope is global, its activities are concentrated in the Middle East. APT39 has prioritized the telecommunications sector, with additional targeting of the travel industry and IT firms that support it and the high-tech industry.

Overview: The group's focus on the telecommunications and travel industries suggests intent to perform monitoring, tracking, or surveillance operations against specific individuals, collect proprietary or customer data for commercial or operational purposes that serve strategic requirements related to national priorities, or create additional accesses and vectors to facilitate future campaigns. Government entities targeting suggests a potential secondary intent to collect geopolitical data that may benefit nation-state decision making.

Associated malware: The group primarily leverages the SEAWEED and CACHEMONEY backdoors along with a specific variant of the POWBAT backdoor.



Comments