Stealth Falcon is a cybercrime group affiliated to the United Arab Emirates (UAE) which is associated with Project Raven.[1]
The nickname "Stealth Falcon" was given to the group by Citizen Lab.[2]
The group has been known to deploy spear-phishing attacks against journalists and human rights activists.[3][4] The group uses a variety of attack vectors, including PowerShell macros, URL shorteners, and social engineering.[2][5][6][3][7]
See also
editReferences
edit- ^ "Group: Stealth Falcon - MITRE ATT&CK™". attack.mitre.org.
- ^ a b Bill Marczak; John Scott-Railton (29 May 2016). "Keep Calm and (Don't) Enable Macros: A New Threat Actor Targets UAE Dissidents". The Citizen Lab.
- ^ a b Ali Taherian (Jun 7, 2016). "Stealth Falcon spyware used on UAE critics". scmagazineuk.com.
- ^ Bisson, David (1 June 2016). "Stealth Falcon spyware targeting UAE critics, say researchers". Graham Cluley.
- ^ Bill Marczak (29 May 2016). "Keep Calm and (Don't) Enable Macros: Appendices". The Citizen Lab.
- ^ Smith, Ms (30 May 2016). "Stealth Falcon group uses custom spyware, fake journalists to target UAE dissidents". CSO Online.
- ^ Eduard Kovacs (May 31, 2016). ""Stealth Falcon" Threat Group Targets UAE Dissidents - SecurityWeek.Com". www.securityweek.com.