13 April 2018

North Africa: Cyber Spies Targetting Middle East, North Africa

Johannesburg — A GLOBAL security company has uncovered a new cyber-espionage campaign attributed to the continuously developing tensions in the Middle East and North Africa.

Kaspersky Lab unearthed the Operation Parliament, which it said was targeting high profile organisations from around the world with a focus on the above-mentioned regions.

The attacks have reportedly been active since 2017 and have targeted top legislative, executive and judicial powers, including but not limited to governmental and large private entities from the regions.

Affected countries are Djibouti, Egypt, Iraq, Jordan, Kuwait, Lebanon, Oman, Palestine, Qatar, Saudi Arabia, Somalia and the United Arab Emirates.

Djibouti and Somalia are nonetheless in East Africa.

Kaspersky Lab announced Operation Parliament at its Cyber Security Weekend for the Middle East, Turkey and Africa (META).

Its experts believe the cyberespionage campaign represents a new geopolitically motivated threat actor that is highly active and skilled.

"Operation Parliament is another symptom of the continuously developing tensions in the Middle East and North Africa," said Mohamad Amin Hasbini, Senior Security Researcher, Global Research and Analysis Team, Kaspersky Lab.

He said the company was witnessing higher sophistication and smarter techniques used by attackers and it did not look like they will stop or slow down anytime soon.

"The type of people and organisations targeted in this attack campaign should elevate their levels of cyber maturity in order to mitigate such attacks in the future."

Attackers are believed to have access to an elaborate database of contacts for sensitive organisations and personnel worldwide, especially of non-trained staff.

Victims of the attacks include government entities, political figures, military and intelligence agencies, media outlets, research centers, Olympic foundations and large private companies.

Based on Kaspersky findings, the attackers have infiltrated their victims using malware that provides them with a remote cmd/powershell terminal that enables them to execute any scripts/commands and receive the result through http requests.

The attacks have taken great care to stay under the radar and have used techniques to verify the victims' devices before infiltrating them.

North Africa

No 1000-Year Curse Unleashed Upon Opening of Black Sarcophagus

Many Egyptians feared that the opening of the sarcophagus, which some thought could contain the bones of Alexander the… Read more »

See What Everyone is Watching

Copyright © 2018 CAJ News Agency. All rights reserved. Distributed by AllAfrica Global Media (allAfrica.com). To contact the copyright holder directly for corrections — or for permission to republish or make other authorized use of this material, click here.

AllAfrica publishes around 800 reports a day from more than 140 news organizations and over 500 other institutions and individuals, representing a diversity of positions on every topic. We publish news and views ranging from vigorous opponents of governments to government publications and spokespersons. Publishers named above each report are responsible for their own content, which AllAfrica does not have the legal right to edit or correct.

Articles and commentaries that identify allAfrica.com as the publisher are produced or commissioned by AllAfrica. To address comments or complaints, please Contact us.