A new type of malware called Stealth Soldier has been deployed as part of a set of espionage attacks in North Africa.
The malware is an undocumented backdoor that primarily operates surveillance functions such as file exfiltration, screen and microphone recording, keystroke logging and stealing browser information.
According to a technical report by cybersecurity company Check Point, the group also includes another phishing campaign dubbed Eye on the Nile that targeted Egyptian journalists and human rights defenders in 2019.
The development signals the first possible re-appearance of this threat actor since then, suggesting the group is geared towards surveillance against Egyptian and Libyan targets.
Join the SessionWhat’s more, the Stealth Soldier infrastructure exhibits overlaps with infrastructure associated with another phisher campaign dubbedEye on the nidh Nile, which targeted Egyptian Journalists and Human Rights Agitators in2019.