New Arid Viper mobile espionage attacks examined

14 June 2024

Malicious Android apps have been leveraged by suspected Hamas-linked threat operation Arid Viper — also known as APT-C-23, Grey Karkadann, Two-tailed Scorpion, Desert Falcon, and Mantis — to facilitate the deployment of the AridSpy spyware as part of five mobile espionage campaigns, three of which remain active, The Hacker News reports. Intrusions involved the utilization of fraudulent sites distributing trojanized versions of the NortirChat, LapizaChat, and ReblyChat messaging apps, a malicious version of the Palestinian Civil Registry app, and a fake job opportunity app to spread AridSpy, which deploys a first-stage payload upon execution and operates even after the deletion of the malicious apps, according to a report from ESET.

Source: SC Magazine

Date:

14 June 2024

Categorie(s):

NEWS

Tag(s):

Arid Viper, IT, Network Security, New, News

Internet Archive Secures Zendesk Account, Works Toward Full-Service Restoration23 October 2024
Ghosts in the Machines: NHIs spread terror this Halloween 23 October 2024
Grayscale Investments Data Breach Exposes 693K User Records Reportedly Affected23 October 2024
Researchers Reveal ‘Deceptive Delight’ Method to Jailbreak AI Models23 October 2024
US Government Pledges to Cyber Threat Sharing Via TLP Protocol23 October 2024