Middle East Daily
    Hot News
    Business

    DIB Signs USD 150 Million Murabaha Deal with Turkcell to Accelerate Türkiye’s Tech Transformation

    Business

    Payrails and Ride-hailing app inDrive partner to improve Dynamic Transaction Routing & Localization

    Lifestyle

    Fashion Confidence: METRO BRAZIL Drives 166% Sales Surge with Revolutionary Wardrobe Solutions in the UAE

    Important Pages:
    • Privacy Policy
    • Terms & Conditions
    Facebook Twitter Instagram Pinterest
    • Privacy Policy
    • Terms & Conditions
    Wednesday, June 4
    Facebook Twitter
    Middle East Daily
    • Home
    • News

      Hamdan Bin Rashid Al Maktoum Foundation Visits Schools Across UAE to Highlight Educational Awards

      MENA Effie Thought Leadership Program returns to Dubai with bold conversations on media effectiveness

      FIA PRESIDENT BEN SULAYEM NOMINATES MALCOLM WILSON OBE AS CANDIDATE FOR DEPUTY PRESIDENT FOR SPORT

      Nader Abu-Yaghi appointed Director of Healthcare Services for “Pyramids Health” and “Ability Rehabilitation Medical Center”

      Declaration on longevity and precision medicine launched at Abu Dhabi Global Health Week

    • Business

      GEHRY PARTNERS DESIGNED NEXT PHASE OF BPS DEVELOPMENT TO PROGRESS FOLLOWING PLANNING CONSENT

      SBC Summit Malta to Spotlight Next-Gen Tech Driving the Future of Sports Betting

      Al-Futtaim Electric Mobility Launches the All-New BYD SEAL 7 DM-i Hybrid in the UAE

      DIB Signs USD 150 Million Murabaha Deal with Turkcell to Accelerate Türkiye’s Tech Transformation

      ASPEN REINFORCES SAUDI MARKET LEADERSHIP WITH NEW MIDDLE EAST REGION HQ IN RIYADH

    • Technology

      CNTXT AI and Beam Partner to Tackle the Gulf’s $5.4 Billion AI Agent Opportunity

      Meta AI App goes live in MENA

      CNTXT AI Unveils Munsit: The Most Accurate Arabic Speech Recognition Model

      New York City Dermatologist Brings Revolutionary Hair Loss Treatments to Dubai

      Samsung announces pre-orders for the Bespoke AI Jet Ultra, the world’s most powerful stick vacuum cleaner

    • Lifestyle

      Ajman Department of Tourism Development launches ‘Ride for the Community 2025’ initiative to advance sustainable community goals

      New York City Dermatologist Brings Revolutionary Hair Loss Treatments to Dubai

      Why Endless’s New Platform Is the Fashion Reset Dubai Has Been Waiting For

      Samsung announces pre-orders for the Bespoke AI Jet Ultra, the world’s most powerful stick vacuum cleaner

      UAE’s first-ever Woman Grandmaster Rouda Essa Alserkal to play the Norway Chess Open 2025

    Breaking News:
    • GEHRY PARTNERS DESIGNED NEXT PHASE OF BPS DEVELOPMENT TO PROGRESS FOLLOWING PLANNING CONSENT
    • SBC Summit Malta to Spotlight Next-Gen Tech Driving the Future of Sports Betting
    • Al-Futtaim Electric Mobility Launches the All-New BYD SEAL 7 DM-i Hybrid in the UAE
    • DIB Signs USD 150 Million Murabaha Deal with Turkcell to Accelerate Türkiye’s Tech Transformation
    • ASPEN REINFORCES SAUDI MARKET LEADERSHIP WITH NEW MIDDLE EAST REGION HQ IN RIYADH
    • Hamdan Bin Rashid Al Maktoum Foundation Visits Schools Across UAE to Highlight Educational Awards
    • CNTXT AI and Beam Partner to Tackle the Gulf’s $5.4 Billion AI Agent Opportunity
    • BMW is once again bringing an exclusive study for a small series to Lake Como this year: The BMW Concept Speedtop
    Middle East Daily
    Home » ESET releases latest APT report: China-aligned groups expand targeting; Iran advances diplomatic espionage
    Business

    ESET releases latest APT report: China-aligned groups expand targeting; Iran advances diplomatic espionage

    Share
    Facebook Twitter LinkedIn Pinterest WhatsApp

    ESET Research has released its latest APT Activity Report, which highlights activities of select advanced persistent threat (APT) groups that were documented by ESET researchers from April 2024 until the end of September 2024. ESET observed a notable expansion in targeting by China-aligned MirrorFace. Typically focused on Japanese entities, it extended its operations to include a diplomatic organization in the European Union for the first time, while continuing to prioritize its Japanese targets. Additionally, China-aligned APT groups have been increasingly relying on the open-source and multiplatform SoftEther VPN to maintain access to victims’ networks. Researchers also observed indications that Iran-aligned groups might be leveraging their cybercapabilities to support diplomatic espionage and, potentially, kinetic operations.

    “With regard to China-aligned threat groups, we detected extensive use of the SoftEther VPN by Flax Typhoon, observed Webworm switching from its full-featured backdoor to using the SoftEther VPN Bridge on machines belonging to governmental organizations in the EU, and noticed GALLIUM deploying SoftEther VPN servers at telecommunications operators in Africa,” says Director of Threat Research at ESET, Jean-Ian Boutin. “For the first time, we observed MirrorFace targeting a diplomatic organization within the EU, a region that remains a focal point for several China-, North Korea-, and Russia-aligned threat actors. Many of these groups are particularly focused on governmental entities and the defense sector,” he adds.

    Iran-aligned groups, on the other hand, compromised several financial services firms in Africa – a continent geopolitically important to Iran, conducted cyberespionage against Iraq and Azerbaijan, neighboring countries with which Iran has complex relationships, and increased their stake in the transport sector in Israel. Despite this seemingly narrow geographical targeting, Iran-aligned groups maintained a global focus, further pursuing diplomatic envoys in France and educational organizations in the United States.

    North Korea-aligned threat actors persisted with their pursuit of stolen funds – both traditional currencies and cryptocurrencies. We observed these groups continuing their attacks on defense and aerospace companies in Europe and the US, as well as targeting cryptocurrency developers, think tanks, and NGOs. One such group, Kimsuky, began abusing Microsoft Management Console files, which are typically used by system administrators but can execute any Windows command. Additionally, several North Korea-aligned groups frequently misused popular cloud-based services.

    And finally, ESET Research detected Russia-aligned cyberespionage groups frequently targeting webmail servers such as Roundcube and Zimbra, usually with spearphishing emails that trigger known XSS vulnerabilities. Besides Sednit targeting governmental, academic, and defense-related entities worldwide, ESET identified another Russia-aligned group, GreenCube, stealing email messages via XSS vulnerabilities in Roundcube. Other Russia-aligned groups continued to focus on Ukraine, with Gamaredon deploying large spearphishing campaigns while reworking its tools using and abusing both Telegram and Signal messaging apps. Additionally, Sandworm utilized its new Windows backdoor named WrongSens. ESET also analyzed the public hack-and-leak of data from the Polish Anti-Doping Agency, which was likely compromised by an initial access broker who then shared access with the Belarus-aligned FrostyNeighbor APT group, an entity behind cyber-enabled disinformation campaigns critical of NATO.

    In Asia, ESET observed that campaigns continued to focus primarily on governmental organizations. However, research also noticed an increased emphasis on the education sector, particularly targeting researchers and academics focused on the Korean peninsula and Southeast Asia. This shift was driven by threat actors aligned with China and North Korea’s interests. Lazarus, one of the North Korea-aligned groups, continued to attack entities around the globe in the financial and technology sectors. In the Middle East, several Iran-aligned APT groups continued to attack governmental organizations, with Israel being the most affected country.

    Over the past two decades, Africa has become a significant geopolitical partner for China, and we have seen China-aligned groups expand their activities on that continent. In Ukraine, Russia-aligned groups continued to be the most active, heavily impacting governmental entities, the defense sector, and essential services such as energy, water, and heat supply.

    The highlighted operations are representative of the broader landscape of threats ESET investigated during this period. ESET products protect our customers’ systems from the malicious activities described in this report. Intelligence shared here is based mostly on proprietary ESET telemetry data. These threat intelligence analyses, known as ESET APT Reports PREMIUM, assist organizations tasked with protecting citizens, critical national infrastructure, and high-value assets from criminal and nation-state-directed cyberattacks. More information about ESET APT Reports PREMIUM and its delivery of high-quality, strategic, actionable, and tactical cybersecurity threat intelligence is available at the ESET Threat Intelligence page.

    About ESET:

    ESET® provides cutting-edge digital security to prevent attacks before they happen. By combining the power of AI and human expertise, ESET stays ahead of known and emerging cyberthreats — securing businesses, critical infrastructure, and individuals. Whether it’s endpoint, cloud or mobile protection, our AI-native, cloud-first solutions and services remain highly effective and easy to use. ESET technology includes robust detection and response, ultra-secure encryption, and multifactor authentication. With 24/7 real-time defense and strong local support, we keep users safe and businesses running without interruption. An ever-evolving digital landscape demands a progressive approach to security: ESET is committed to world-class research and powerful threat intelligence, backed by R&D centers and a strong global partner network.

    Share. Facebook Twitter Pinterest LinkedIn WhatsApp

    Related Posts

    Business

    GEHRY PARTNERS DESIGNED NEXT PHASE OF BPS DEVELOPMENT TO PROGRESS FOLLOWING PLANNING CONSENT

    Business

    SBC Summit Malta to Spotlight Next-Gen Tech Driving the Future of Sports Betting

    Business

    Al-Futtaim Electric Mobility Launches the All-New BYD SEAL 7 DM-i Hybrid in the UAE

    Business

    DIB Signs USD 150 Million Murabaha Deal with Turkcell to Accelerate Türkiye’s Tech Transformation

    Business

    ASPEN REINFORCES SAUDI MARKET LEADERSHIP WITH NEW MIDDLE EAST REGION HQ IN RIYADH

    Business

    Hamdan Bin Rashid Al Maktoum Foundation Visits Schools Across UAE to Highlight Educational Awards

    Business

    CNTXT AI and Beam Partner to Tackle the Gulf’s $5.4 Billion AI Agent Opportunity

    Business

    BMW is once again bringing an exclusive study for a small series to Lake Como this year: The BMW Concept Speedtop

    Add A Comment

    Leave A Reply Cancel Reply

    Follow Us
    • Facebook
    • Twitter
    Top Posts
    News

    Abu Dhabi Art 2024 announces Community Partners for 2024, Art + Tech programme and winners of the Student Pavilion Prize this year

    Abu Dhabi Art announces that House of Artisans will be conceiving and designing the Community Partners exhibition…

    Business

    New Player Prosper Real Estate Set To Elevate UAE’s Realty Landscape With Growth And Investment Opportunities

    Prosper Real Estate, a leading Dubai-based real estate consultancy and brokerage firm, has emerged as…

    Business

    FROM DUBAI TO CAIRO, JDPGLOBAL.COM EYES INVESTMENT IN EGYPTIAN STARTUPS

    *Leading investment firm JDP Global (JustPark.com, Adzuna, TheCarPeople, UKmedix.com) announces its entry into Egypt, hoping…

    Lifestyle

    Abu Dhabi: Emirati Oud Players Bring Healing Power Of Music To Patients In Hospital

    Emirati oud players performed for patients at Cleveland Clinic Abu Dhabi as part of an…

    Lifestyle

    New Year, New Start: DoubleTree By Hilton Dubai – Jumeirah Beach Is Kicking Off 2024 By Launching A Whole New Line Up Of Amazing Dining Experiences

    With the launch of its new program of events and experiences, DoubleTree by Hilton Dubai…

    Welcome to Middle East Daily, your daily dose of news and insights from the heart of the Middle East. Explore the latest headlines, delve into thought-provoking analysis, and engage with stories that define our region's narrative.

    Facebook Twitter
    Categories
    • Business (237)
    • Lifestyle (104)
    • News (110)
    • Technology (69)
    Top Insights
    Lifestyle

    A Well-Deserved Mother’s Day Indulgence at Bab Al Qasr Hotel

    Business

    Dexlevo Successfully Concludes GOURI Symposium at AMWC 2025

    © 2025 Middle East Daily.
    • Home
    • Privacy Policy
    • Terms & Conditions

    Type above and press Enter to search. Press Esc to cancel.