The Kaspersky Global Research and Analysis Team (GReAT) has detected that the SideWinder APT group is expanding its attack operations into the Middle East and Africa, utilising a previously unknown espionage toolkit called ‘StealerBot’.
As part of its ongoing monitoring of APT activities, Kaspersky said it discovered that recent campaigns by the SideWinder APT group were targeting high-profile entities and strategic infrastructures in various countries in the Middle East, Turkiye, as well as in Morocco and Djibouti in Africa.
The campaign in general remains active and may target other victims.