SYMBOL | COMMON_NAME | aka. SYNONYMS |
Lookout and Electronic Frontier Foundation (EFF) have discovered Dark Caracal, a persistent and prolific actor, who at the time of writing is believed to be administered out of a building belonging to the Lebanese General Security Directorate in Beirut. At present, we have knowledge of hundreds of gigabytes of exfiltrated data, in 21+ countries, across thousands of victims. Stolen data includes enterprise intellectual property and personally identifiable information.
2023-02-10 ⋅ Electronic Frontier Foundation ⋅ Uncle Sow: Dark Caracal in Latin America Bandook |
2021-07-19 ⋅ Proofpoint ⋅ New Threat Actor Uses Spanish Language Lures to Distribute Seldom Observed Bandook Malware Bandook |
2021-07-07 ⋅ ESET Research ⋅ Bandidos at large: A spying campaign in Latin America Bandook |
2020-12-10 ⋅ Electronic Frontier Foundation ⋅ Dark Caracal: You Missed a Spot Bandook |
2020-11-26 ⋅ Checkpoint ⋅ Bandook: Signed & Delivered Bandook |
2020-11-26 ⋅ Check Point ⋅ Bandook: Signed & Delivered Bandook Dark Caracal |
2019 ⋅ MITRE ⋅ Group description: Dark Caracal Dark Caracal |
2018-01-24 ⋅ Objective-See ⋅ Analyzing CrossRAT: A cross-platform implant, utilized in a global cyber-espionage campaign CrossRAT |
2018-01-18 ⋅ Lookout ⋅ Dark Caracal: Cyber-espionage at a Global Scal CrossRAT Bandook Dark Caracal |
2016-08 ⋅ Electronic Frontier Foundation ⋅ Operation Manul jRAT Bandook |