Attackers Impersonating Israeli Ministry with Blended Tools

Threat Level – Amber | Attack Report
Download PDF

An attack campaign has been discovered targeting various Israeli entities using publicly available frameworks like Donut and Sliver. Believed to be highly targeted, the campaign leverages target-specific infrastructure and custom WordPress websites as a payload delivery mechanism. Despite its specific targeting, the campaign affects a variety of entities across unrelated verticals and relies on well-known open-source malware.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox