← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Spyware Operators Rebuild Multi-Tier Infrastructure to Target Mobile Devices
WHITE Predator AlienVault 2024-03-04 Modified: 2024-03-04
81
IOCs
HIGH VOLUME
New research reveals that operators of the Predator spyware have rebuilt a multi-tier infrastructure targeting mobile devices in at least eleven countries. The spyware is marketed for counterterrorism but often used against civil society. Technical analysis identified new delivery domains and servers still active after public disclosures in 2023. Users should follow security best practices like updates, lockdown mode, and separating personal and corporate devices.
spywarepredatormobile threat
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
MALWARE FAMILIES
Predator
Indicators of Compromise (81)
All domain
TYPEINDICATORDESCRIPTIONCREATED
domain 2-gis.kz 2024-03-04
domain astanapark.com 2024-03-04
domain beroxe.com 2024-03-04
domain buildneeds.net 2024-03-04
domain bw-guardian.com 2024-03-04
domain cabinet-salyk.kz 2024-03-04
domain centent-management.net 2024-03-04
domain clazc.com 2024-03-04
domain coazoa.com 2024-03-04
domain copy-note.net 2024-03-04
domain corporatebusinesssolution.net 2024-03-04
domain dzhabarzan.com 2024-03-04
domain e-kgd.kz 2024-03-04
domain ehudaldaa.com 2024-03-04
domain escortbabesluxo.com 2024-03-04
domain eventnews.live 2024-03-04
domain fast-notify.com 2024-03-04
domain fastnews.biz 2024-03-04
domain fr-monde.com 2024-03-04
domain gabzmus.com 2024-03-04
domain get-location.com 2024-03-04
domain get-location.net 2024-03-04
domain highclub.life 2024-03-04
domain informationrank.net 2024-03-04
domain jumia-egy.com 2024-03-04
domain kapital-news.com 2024-03-04
domain kejoranews.net 2024-03-04
domain kollesa.com 2024-03-04
domain krisha-kz.com 2024-03-04
domain kroal.com 2024-03-04
domain ladiesclubhouse.com 2024-03-04
domain lusofonia-mundo.com 2024-03-04
domain magnum-kz.com 2024-03-04
domain mastershop.biz 2024-03-04
domain mb-ph.net 2024-03-04
domain mmegi.co 2024-03-04
domain msbsck.com 2024-03-04
domain mujmbosnoticias.com 2024-03-04
domain mundodenoticias.online 2024-03-04
domain myfawry.net 2024-03-04
domain nospam.kz 2024-03-04
domain notify-service.biz 2024-03-04
domain nur-news.com 2024-03-04
domain olimpbets.kz 2024-03-04
domain ongsworld.com 2024-03-04
domain pelovkin.com 2024-03-04
domain people-beeline.com 2024-03-04
domain peticaonline.com 2024-03-04
domain plastictoysworld.com 2024-03-04
domain plinkypong.com 2024-03-04
domain post-notify.info 2024-03-04
domain qazsporttv.com 2024-03-04
domain rcuples.com 2024-03-04
domain rozavetrovv.com 2024-03-04
domain schedulefestival.com 2024-03-04
domain shoxtek.com 2024-03-04
domain soccer-bw.com 2024-03-04
domain spacsaver.info 2024-03-04
domain sportnow.news 2024-03-04
domain suarapapua.co 2024-03-04
domain sustanbuild.com 2024-03-04
domain thintank.co 2024-03-04
domain tickets-kz.com 2024-03-04
domain tobupmi.com 2024-03-04
domain tohna.net 2024-03-04
domain ulstur.co 2024-03-04
domain vendaswebs.com 2024-03-04
domain vestinfo.net 2024-03-04
domain vestinfo.org 2024-03-04
domain vestinfos.net 2024-03-04
domain vinho-online.com 2024-03-04
domain vlast-news.com 2024-03-04
domain walatparez.com 2024-03-04
domain weekendcool.com 2024-03-04
domain yo-um7.com 2024-03-04
domain zakorn.com 2024-03-04
domain zikolo.net 2024-03-04
domain ztb-news.com 2024-03-04
domain 02s.co 2024-03-04
domain 06g.co 2024-03-04
domain 09a.co 2024-03-04
References (1)
↗ https://www.recordedfuture.com/predator-spyware-operators-rebuild-multi-tier-infrastructure-target-mobile-devices