Security News

Hamas-Linked Cyberattacks Using Rust-Powered SysJoker Backdoor Against Israel
2023-11-24 10:31

Cybersecurity researchers have shed light on a Rust version of a cross-platform backdoor called SysJoker, which is assessed to have been used by a Hamas-affiliated threat actor to target Israel...

Israel warns of BiBi wiper attacks targeting Linux and Windows
2023-11-13 16:53

Data-wiping attacks are becoming more frequent on Israeli computers as researchers discovered variants of the BiBi malware family that destroys data on both Linux and Windows systems. A Linux version of the BiBi wiper was seen in late October by researchers at cybersecurity companies ESET and SecurityJoes, who noted that it was launched by pro-Hamas hacktivists.

Iranian hackers launch malware attacks on Israel’s tech sector
2023-11-12 15:30

The recent attacks were discovered by researchers at cybersecurity company CrowdStrike, who made the attribution based on infrastructure overlaps with past campaigns, observed tactics, techniques, and procedures, the use of the IMAPLoader malware, phishing lures. In a report published earlier this week, researchers say that Imperial Kitten launched phishing attacks in October using a 'job recruitment' theme in emails carrying a malicious Microsoft Excel attachment.

MuddyC2Go: New C2 Framework Iranian Hackers Using Against Israel
2023-11-09 10:50

Iranian nation-state actors have been observed using a previously undocumented command-and-control framework called MuddyC2Go as part of attacks targeting Israel. The tool has been attributed to MuddyWater, an Iranian state-sponsored hacking crew that's affiliated to the country's Ministry of Intelligence and Security.

Iran's MuddyWater Targets Israel in New Spear-Phishing Cyber Campaign
2023-11-02 09:21

The Iranian nation-state actor known as MuddyWater has been linked to a new spear-phishing campaign targeting two Israeli entities to ultimately deploy a legitimate remote administration tool from...

Palestine crypto donation scams emerge amid Israel-Hamas war
2023-10-23 19:07

As thousands of civilians die amid the deadly Israel-Hamas war, scammers are capitalizing on the horrific events to collect donations by pretending to be legitimate charities. These accounts, primarily listing crypto wallet addresses, have dubious origins, are not endorsed by an official charity, and are very likely to be scams.

Fake 'RedAlert' rocket alert app for Israel installs Android spyware
2023-10-16 15:18

Israeli Android users are targeted by a malicious version of the 'RedAlert - Rocket Alerts' app that, while it offers the promised functionality, acts as spyware in the background. RedAlert - Rocket Alerts is a legitimate open-source app used by Israeli citizens to receive notifications of incoming rockets targeting the country.

Hacktivist attacks erupt in Middle East following Hamas assault on Israel
2023-10-09 13:00

Hacktivism efforts have proliferated rapidly in the Middle East following the official announcement of a war between Palestine and Israel. At least 15 known cybercriminal, ransomware, and hacktivist groups have announced their active participation in disruptive attacks targeting institutions in Israel and Palestine, as well as their supporters.

Charming Kitten's New Backdoor 'Sponsor' Targets Brazil, Israel, and U.A.E.
2023-09-11 13:24

The Iranian threat actor known as Charming Kiten has been linked to a new wave of attacks targeting different entities in Brazil, Israel, and the U.A.E. using a previously undocumented backdoor named Sponsor. "The Sponsor backdoor uses configuration files stored on disk," ESET researcher Adam Burgher said in a new report published today.

Ragnar Locker claims attack on Israel's Mayanei Hayeshua hospital
2023-09-08 19:02

The Ragnar Locker ransomware gang has claimed responsibility for an attack on Israel's Mayanei Hayeshua hospital, threatening to leak 1 TB of data allegedly stolen during the cyberattack. Yesterday, security researcher MalwareHunterTeam noted that the Ragnar Locker ransomware group claimed responsibility for the attack, creating a new page for the hospital on their data leak site.