You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
#ESETResearch unveils a large watering hole campaign targeting 20+ high-profile websites linked to the Middle East. We link that campaign to a likely customer of Candiru, a private spyware firm recently added to the @CommerceGov Entity List. https://www.welivesecurity.com/2021/11/16/strategic-web-compromises-middle-east-pinch-candiru/ … 1/4
Attackers compromised governmental, media and defense companies’ websites. They injected malicious JavaScript code in order to fingerprint the visitors and redirect them to a server that may deliver a browser exploit. In 2021, we noticed a shift to a strong focus on Yemen 
. 2/4
Information about recent Candiru operations was disclosed last July by @citizenlab, @MsftSecIntel and @Google TAG. https://www.microsoft.com/security/blog/2021/07/15/protecting-customers-from-a-private-sector-offensive-actor-using-0-day-exploits-and-devilstongue-malware/ … https://blog.google/threat-analysis-group/how-we-protect-users-0-day-attacks/ … https://citizenlab.ca/2021/07/hooking-candiru-another-mercenary-spyware-vendor-comes-into-focus/ … 3/4
Don’t miss our presentation at @CYBERWARCON. We will present details of this discovery that go beyond the blogpost. As usual, plaintext IoCs are available on our GitHub account: https://github.com/eset/malware-ioc/tree/master/swc-candiru … 4/4
Thanks for reporting! Next time please let us know so we can prevent it, things like this need to be told to the domain/hosting providers so we can take it down.
Thanks for your message, not all registrars are so cooperative and want to be part of the solution! See DM.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
