Threat Intelligence, Malware

Updated Pierogi malware leveraged in Gaza Cybergang attacks against Palestinian entities

New attacks involving the Pierogi++ malware have been launched by Hamas-affiliated threat operation Gaza Cybergang against Palestinian entities, The Hacker News reports. Despite using a different programming language and lacking Ukrainian strings in its code, the Pierogi++ backdoor retains its predecessor's screenshot-capturing, command execution, and attacker file-downloading capabilities, according to a report from SentinelOne. Such a discovery indicates the continued improvements implemented by Gaza Cybergang in its attack arsenal, noted researchers, who added that the group has also been associated with the Operation Bearded Barbie and Big Bang attack campaigns, as well as the WIRTE threat operation. "The observed overlaps in targeting and malware similarities across the Gaza Cybergang sub-groups after 2018 suggests that the group has likely been undergoing a consolidation process. This possibly includes the formation of an internal malware development and maintenance hub and/or streamlining supply from external vendors," said SentinelOne researcher Aleksandar Milenkoski.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.