Bringing cybersecurity globally to critical and complex key activities
Alias: APT-C-23, Arid Viper, AridViper, Desert Falcon, Gaza cybergang Group2
ATK66 (aka: APT-C-23) is commonly considered an APT group linked to the Hamas organization ruling the Gaza Strip.
Reportedly, the group was established in 2011, but became active starting from 2014, when the first attacks were detected in the wild. By examining the group’s victims and its TTPs, it is apparent the group mainly attacks targets related to the Palestinian Authority. APT-C-23 members are native Arabic speakers from the Middle East. According to Kaspersky, at its origins, APT-C-23 consisted of 30 members working in three teams and operating mainly out of Palestinian Territories, Egypt and Turkey.
REFERENCES