Discover the latest cyber espionage revelation – a watering hole attack targeting 25 websites associated with the Kurdish minority over the past year and a half.
Uncovered by French cybersecurity firm Sekoia, the SilentSelfie campaign has been the object of a long-running intrusion set, with traces dating back to December 2022.
The attack involved the deployment of four different information-stealing frameworks, from basic location tracking to the installation of malicious Android applications.
In a detailed report, security researchers from Sekoia outlined the gravity of the situation, revealing how the attack affected Kurdish press, media, and political websites, amplifying concerns about a new threat cluster targeting the Kurdish community.
The attack technique, referred to as a watering hole attack, involves the deployment of malicious JavaScript to extract sensitive information from website visitors, including device data and location details.
The attack went beyond collecting information and included redirects to rogue Android applications, with the potential to access a user’s system details, contact lists, and location without their knowledge.
The authors behind SilentSelfie remain mysterious, but suspicions point to the Kurdistan Regional Government of Iraq due to recent incidents involving Kurdish journalists.
Despite its relatively unsophisticated nature, the SilentSelfie campaign has raised eyebrows in the cybersecurity community for its impact on Kurdish websites and its extended duration.
The SilentSelfie incident serves as a reminder of the persistent threats faced by online communities, and the need for enhanced vigilance in an increasingly digital world.
Stay informed about the latest cybersecurity developments by following us on Twitter and LinkedIn for more exclusive content.