TA402’s Covert Operation Takes Aim at the Middle East

Threat Level

Attack Report

For a detailed threat advisory, download the pdf file here

Summary

TA402 (aka Extreme Jackal) launched sophisticated phishing campaigns targeting government entities in the Middle East. The objective was to deploy a newly developed initial access downloader called IronWind, employing an economic-themed social engineering lure.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.