A set of malicious tools belonging to an advanced persistent threat group dubbed OilRig has leaked online. The group, apparently backed by Iran, apparently has been active in the Middle East, analysts say. The leaked tools include an updated version of BondUpdater and PoisonFrog. The tools appear on Github and Telegram, along with a list of potential targets and victims. The list of victims and targets is only posted on Telegram, analysts have verified the material, which has been available since March.”]
Source: https://www.databreachtoday.com/leak-exposes-oilrig-apt-groups-tools-a-12397