Tag Archive for: Saudi

New Phishing Campaign Targets Saudi Government Service Portal

/in


Multiple phishing domains impersonating Absher, the Saudi government service portal, have been set up to provide fake services to citizens and steal their credentials.

The discovery comes from cybersecurity researchers at CloudSEK, who published an advisory about the threat on Thursday.

“The threat actors are targeting individuals by sending an SMS, along with a link, urging people to update their information on the Absher Portal,” wrote the security experts. “The phishing website presents users with a fake login portal, compromising the login credentials.”

According to CloudSEK, after the fake ‘login’ action, a pop-up appears on the site prompting a four-digit one-time password (OTP) sent to the registered mobile number, probably used to bypass multifactor authentication (MFA) on the legitimate Absher Portal.

“Any four-digit number is accepted as an OTP without verification, and the victim successfully logs in to the fake portal,” CloudSEK clarified.

Once the fake login process is complete, the user is then asked to fill in a ‘registration’ form, divulging sensitive personally identifiable information (PII), and redirected to a new page where they are prompted to choose a bank. They are then directed to a fake bank login portal designed to steal their credentials.

“After submitting the internet banking login details, a loading icon pops up, and the page gets stuck, while the user banking credentials have already been compromised,” the security researchers wrote.

According to CloudSEK, government services in the Saudi region have recently been a prime target for cyber-criminals to compromise user credentials and use them to conduct further cyber-attacks.

“Multiple phishing domains have been registered to gain the PII of individuals in Saudi Arabia,” the company wrote.

To mitigate the impact of these attacks, CloudSEK called on government organizations to monitor phishing campaigns targeting citizens and inform and educate them about these dangers, for instance, by telling them not to click on suspicious links.

The advisory comes weeks after CloudSEK discovered a separate phishing campaign targeting KFC and McDonald’s customers in Saudi Arabia.

Source…

Saudi urges WhatsApp users to update app to avoid malware threat

/in


Saudi cybersecurity urges WhatsApp users to update app to avoid malware threat

Riyadh: The authorities in the Kingdom of Saudi Arabia (KSA) on Sunday urged users of the WhatsApp application to update their app to avoid serious malware threats.

The national indicative centre for cyber ​​security, in Saudi Arabia, warned of security flaws in the WhatsApp application.

The centre, which is affiliated with the Kingdom’s national cybersecurity authority, said in its warning, “WhatsApp has issued several updates to address the vulnerabilities.”

MS Education Academy

It explained that the vulnerabilities exist in WhatsApp applications for the Android system prior to version 2.22.16.12, and before version 2.22.16.2.

There are also gaps in the WhatsApp Business application for Android before version 2.22.16.12, and WhatsApp iOS before version 2.22.16.12 and 2.22.15.9.

The centre stated that the threats consist in enabling the attacker to exploit the vulnerabilities by executing malicious software remotely.

According to data from Kaspersky, a cybersecurity company, published in February, the year 2021 saw a significant increase in attacks targeting mobile phones in Saudi Arabia by 19 per cent.

Subscribe us on The Siasat Daily - Google News

Source…

Biden to look beyond Khashoggi in Saudi Arabia- POLITICO

/in


With help from Christopher Miller and Daniel Lippman

Send tips | Subscribe here | Email Alex | Email Quint

A note to all students of international relations: If you want to see “realpolitik” in action, make sure to watch two minutes of President JOE BIDEN’s news conference in Israel today.

Alex was in attendance for the event, which followed Biden’s bilateral with Israeli Prime Minister YAIR LAPID. Reporters had to be at the Waldorf Astoria two hours early, giving us time to wash down sandwiches with warm water while chatting up administration officials. All those conversations were off the record, but it’s safe to say something on all of our minds, amid the glitz and glamor of the moment, was if Biden planned to address the murder of journalist and dissident JAMAL KHASHOGGI while in Saudi Arabia.

After all, he’s headed to Jeddah on Friday, and the press hadn’t had much of a chance to speak with the president directly since he arrived on Wednesday. Plus, the slain U.S. resident’s wife, HANAN ELATR KHASHOGGI, told Fox News that the White House promised her husband’s killing would be mentioned.

Reuters’ STEVE HOLLAND, seated right behind Alex at the presser, forced the issue when he asked Biden if he would bring up Khashoggi’s killing and other human rights abuses directly with Saudi leaders, namely Crown Prince MOHAMMED BIN SALMAN.

The president dodged.

“My views on Khashoggi have been absolutely, positively clear, and I have never been quiet about talking about human rights,” but “the reason I’m going to Saudi Arabia, though, is much broader. It’s to promote U.S. interests,” Biden said. “We have an opportunity to reassert what I think we made a mistake of walking away from: our influence in the Middle East.”

When Holland pressed that Biden, therefore, didn’t expect to bring up Khashoggi with MBS, the president asserted that his position on the matter is “so clear. If anyone doesn’t…

Source…

How a Saudi woman’s iPhone revealed hacking around the world

/in


WASHINGTON, Feb 17 (Reuters) – A single activist helped turn the tide against NSO Group, one of the world’s most sophisticated spyware companies now facing a cascade of legal action and scrutiny in Washington over damaging new allegations that its software was used to hack government officials and dissidents around the world.

It all started with a software glitch on her iPhone.

An unusual error in NSO’s spyware allowed Saudi women’s rights activist Loujain al-Hathloul and privacy researchers to discover a trove of evidence suggesting the Israeli spyware maker had helped hack her iPhone, according to six people involved in the incident. A mysterious fake image file within her phone, mistakenly left behind by the spyware, tipped off security researchers.

Register now for FREE unlimited access to Reuters.com

The discovery on al-Hathloul’s phone last year ignited a storm of legal and government action that has put NSO on the defensive. How the hack was initially uncovered is reported here for the first time.

Al-Hathloul, one of Saudi Arabia’s most prominent activists, is known for helping lead a campaign to end the ban on women drivers in Saudi Arabia. She was released from jail in February 2021 on charges of harming national security. read more

Soon after her release from jail, the activist received an email from Google warning her that state-backed hackers had tried to penetrate her Gmail account. Fearful that her iPhone had been hacked as well, al-Hathloul contacted the Canadian privacy rights group Citizen Lab and asked them to probe her device for evidence, three people close to al-Hathloul told Reuters.

After six months of digging through her iPhone records, Citizen Lab researcher Bill Marczak made what he described as an unprecedented discovery: a malfunction in the surveillance software implanted on her phone had left a copy of the malicious image file, rather than deleting itself, after stealing the messages of its target.

He said the finding, computer code left by the attack, provided direct evidence NSO built the espionage tool.

“It was a game changer,” said Marczak “We caught something that the company thought was uncatchable.”

Bill Marczak poses for a…

Source…