Lebanese Cedar, an advanced hacker group believed to be connected to the Lebanese Hezbollah Cyber Unit, has been silently attacking companies around the world in espionage operations. Cybersecurity company ClearSky says that Lebanese Cedar seems to focus on collecting intelligence and stealing company databases with sensitive information. The group may have been active over the past five years but its operations remained unnoticed due to adopting new tactics, techniques, and procedures. The clever selection of tools, tactics, and attack vectors allows them to pass unnoticed. Lebanese Cedar combines open-source tools with custom ones, their current toolset including a full blown web shell, a custom RAT, and carefully selected complementary tools
Source: https://www.bleepingcomputer.com/news/security/hezbollah-hackers-attack-unpatched-atlassian-servers-at-telcos-isps/