APT34 Deploys Phishing Attack With New Malware

The APT34 advanced persistent threat group has been linked to a new piece of malware, used in a phishing attack, identified as Menorah. Its purpose is cyberespionage; able to identify, read from and upload files from a target machine, as well as downloading additional malware. A targeted document contained pricing in Saudi Riyal, leading to suspicions the target was within Saudi Arabia. The sophisticated APT34 group has previously targeted agencies within the Middle East.