Imperial Kitten APT's Lengthy Espionage on Israeli Industry

Imperial Kitten, a group associated with Iran, has been identified in a recent investigation for executing watering-hole attacks on sectors within Israel, namely transportation, logistics, and technology, for an extensive two-year period. The findings, unveiled in research conducted by CrowdStrike, reveal the group's strategic infiltration into legitimate websites to redirect visitors to locations under the attackers' control, where personal data and credentials are phished. This compromised data is then utilized in subsequent cyber attacks. The group's techniques involve serving malware directly to victims and conducting phishing attacks using malicious Microsoft Excel documents, among other tactics. Imperial Kitten's methods encompass various tools and exploits to gain unauthorized access, execute lateral movement, and exfiltrate data.