A massive mobile cyber espionage and advanced persistent threat (APT) campaign dubbed “Dark Caracal” has been stealing hundreds of GB of sensitive personal data records since 2012.
According to a new report from the Electronic Frontier Foundation (EFF) and security firm Lookout, Dark Caracal has targeted thousands of victims across 21 countries and may have been conducting as many as six separate Campaigns since 2012.
Dark Caracal is linked to 90 indicators of compromise (IOCs), to include 26 desktop malware IOCs, 11 Android malware IOCs and 60 domain/IP based IOCs.
According to Threatpost, Lookout focused on the mobile aspects of the security research, while the EFF focused on desktop components in the joint effort to analyze the Dark Caracal infrastructure.