OilAlpha

Description

(Recorded Future) Since May 2022, Insikt Group has tracked an ongoing campaign by a threat group which is highly likely to have targeted entities associated with the non-governmental, media, international humanitarian, and development sectors. It is almost certain that the entities targeted shared an interest in Yemen, security, humanitarian aid, and reconstruction matters. It is highly likely that OilAlpha threat actors were involved in espionage activity, as handheld devices were targeted with remote access tools (RATs) like SpyNote and SpyMax. Our assessment of the victimology suggests that the majority of the targeted entities were Arabic-language speakers and operated Android devices.

Names

Name	Name-Giver
OilAlpha	Recorded Future
TAG-41	Recorded Future
TAG-62	Recorded Future

Country

Yemen

Motivation

Information theft and espionage

First Seen

2022

Tools

Information

https://go.recordedfuture.com/hubfs/reports/cta-2023-0516.pdf

Other Information

Uuid

425b11e0-adbb-4d6f-a5e0-169df11b15bf

Last Card Change

2023-06-21

Threat Intelligence Garden

Explorer

OilAlpha

OilAlpha

Description

Names

Country

Motivation

First Seen

Tools

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks