Kaspersky Lab which launched an Advanced Cybersecurity Platform early this week has announced that it has detected a sophisticated cyber espionage campaign that goes by the name ZooPark.
The campaign is said to be targeted at Android phone users in Middle Eastern countries and is said to be backed by a state-sponsored attacking hacker’s group aimed at political organizations, activists and other targets based in the region.
Kaspersky discovered that ‘ZooPark’ was keeping a track of the contacts, GPS location, SMS messages and more as soon as it was downloaded by a user; and is said to have a backdoor that allows sending of SMS messages and making calls as well as the execution of shell commands without the knowledge of the app user.
Researchers from Kaspersky Labs say that ZooPark looks similar to legitimate news apps and is supposed to display political and local news of the region. The app is said to be currently advertised via Telegram, the popular Russian based Messaging app which has been banned in Iran for being used to coordinate illegal activity.
The cybersecurity firm has announced that the malware induced app is being targeted at users based in Egypt, Jordan, Morocco, Lebanon, and Iran. The Russia based security firm also confirmed that hackers spreading the malware have gained data on 1000 specific high profile politicians and businessmen from the region via ZooPark.
Note- Kaspersky Advanced Cybersecurity Platform is said to be reinforced with the capabilities of Kaspersky’s Anti-target Attacks, Cybersecurity services and new Endpoint detection and Response (EDR) Service from Kaspersky.