Lebanon - Cyber Security Review

Hacking group POLONIUM uses ‘Creepy’ malware against Israel

Posted onOctober 11, 2022

Security researchers reveal previously unknown malware used by the cyber espionage hacking group ‘POLONIUM,’ threat actors who appear to target Israeli organizations exclusively. According to ESET, POLONIUM uses a broad range of custom malware against engineering, IT, law, communications, marketing, Read More …

Exposing POLONIUM activity and infrastructure targeting Israeli organizations

Posted onJune 2, 2022June 5, 2022

Microsoft successfully detected and disabled attack activity abusing OneDrive by a previously undocumented Lebanon-based activity group Microsoft Threat Intelligence Center (MSTIC) tracks as POLONIUM. The associated indicators and tactics were used by the OneDrive team to improve detection of attack Read More …

Digital Footprint Intelligence Report

Posted onDecember 29, 2020December 31, 2020

The Digital Footprint Intelligence Service announces the results of research on the digital footprints of governmental, financial and industrial organizations for countries in the Middle East region: Bahrain, Egypt, Iran, Iraq, Jordan, Kuwait, Lebanon, Oman, Qatar, Saudi Arabia, Sudan, Syria, Read More …

5th Annual Global Cyber Security Forum – Lebanon

Posted onJuly 23, 2019July 24, 2019

Press Release Taking in cognisance the evolving cyber threats across the globe, several nations have formed committee’s & taskforces to implement the best strategies to fight cybercrimes. These task forces are destined to ensure the nation’s assets are protected against Read More …

I know what you did last summer, MuddyWater blending in the crowd

Posted onApril 29, 2019October 16, 2020

MuddyWater is an APT with a focus on governmental and telco targets in the Middle East (Iraq, Saudi Arabia, Bahrain, Jordan, Turkey and Lebanon) and also a few other countries in nearby regions (Azerbaijan, Pakistan and Afghanistan). MuddyWater first surfaced Read More …

Threat Actor Uses DNS Redirects, DNSpionage RAT to Attack Government Targets

Posted onNovember 27, 2018December 3, 2018

Cisco Talos discovered a new malware campaign targeting a commercial Lebanese airline company, as well as United Arab Emirates (UAE) and Lebanon government domains. According to Cisco Talos’ findings, the recently observed campaign could not be connected to other threat Read More …

A Secret Hacking Group Is Using Android Malware to Spy on Thousands of People in 21 Countries, Research Finds

Posted onJanuary 19, 2018

A shadowy hacking campaign has been operating out of a Beirut building owned by the Lebanese General Directorate of General Security for the last six years, stealing text messages, call logs, and files from journalists, military members, corporations, and other Read More …