An advanced remote access trojan known as Xtreme RAT has been identified by Seculert Research Lab as the malware used in an attack on Israeli organizations that impacted 15 computers, so far, according to a Monday blog post by Aviv Raff, CTO with Seculert.
The attackers – which Raff speculates are the same Palestinian hacktivists behind a 2012 attack against the Israeli Police Network – used social engineering techniques, including spear phishing emails, and one of the targets was the Civil Administration of Judea and Samaria.
“This is especially disconcerting as the Administration is responsible for entry and work permits from the West Bank to Israel,” Raff wrote, adding the command and control server is located in the U.S.