GoldenJackal APT group: A threat to government and diplomatic entities in the Middle East and South Asia


A new report from the cybersecurity firm Securelist has identified a new APT group that has been active since at least 2019. The group, which is named GoldenJackal, is believed to be based in Iran and is known for targeting government and diplomatic entities in the Middle East and South Asia.

GoldenJackal has used a variety of techniques to compromise its targets, including phishing, spear phishing, and watering hole attacks. The group has also been known to use custom malware, including backdoors, stealers, and wipers.

In 2021, GoldenJackal was linked to a series of attacks against the United Arab Emirates. The attacks targeted government and military entities, and the group used a variety of techniques, including phishing, spear phishing, and watering hole attacks. The group also used custom malware, including backdoors, stealers, and wipers.

GoldenJackal is a sophisticated APT group that is capable of carrying out a variety of attacks. The group is believed to be state-sponsored, and its activities pose a serious threat to government and diplomatic entities in the Middle East and South Asia.

The Securelist report provides a detailed analysis of GoldenJackal's tactics, techniques, and procedures (TTPs). The report also provides recommendations for how organizations can protect themselves from GoldenJackal and other APT groups.

The report is available on the Securelist website.

Here are some additional details from the report:

  • GoldenJackal is believed to be a state-sponsored group, and its activities are likely being directed by the Iranian government.
  • The group has been active since at least 2019, and it has targeted a wide range of organizations, including government agencies, diplomatic missions, and businesses.
  • GoldenJackal has used a variety of techniques to compromise its targets, including phishing, spear phishing, and watering hole attacks.
  • The group has also been known to use custom malware, including backdoors, stealers, and wipers.
  • GoldenJackal is a sophisticated APT group that is capable of carrying out a variety of attacks.
  • Organizations that are targeted by GoldenJackal could suffer significant damage, including data loss, financial losses, and reputational damage.

No comments:

Millions of mSpy Customer Records Compromised in Data Leak

  A major data leak exposed over 310 gigabytes of information from spyware developer mSpy, including 2.4 million unique email addresses. Thi...