The MoleRats advanced persistent threat (APT) has developed two new backdoors, both of which allow attackers to execute arbitrary code and exfiltrate sensitive data. They were discovered as part of a recent campaign that uses Dropbox, Facebook, Google Docs and Simplenote for command-and-control communications. The campaign targets high-ranking political figures and government officials in Egypt, the Palestinian Territories, the UAE, Turkey and the UAE. The latest version of SharpStage RAT performs screen captures and checks for the Arabic language on the infected machine, thus avoiding execution on non-relevant devices.
Source: https://threatpost.com/molerats-apt-espionage-facebook-dropbox/162162/