Dark Caracal: Analysis of Lebanon’s recently discovered state-sponsored hacking

General Directorate of General Security building in Beirut
General Directorate of General Security building in Beirut/

If Edward Snowden taught the world anything, it’s that governments now have the ability to pry into the personal and political affairs of their own citizens at relative ease, and Lebanon is no exception.

In the wake of the bombshell revelations illustrating the country’s state-sponsored spying activities – directed at its own people – Lebanon has now been thrust at the forefront of this discussion, joining a long list of nations that partake in such pervasive behavior.

The crux of the report, compiled by cybersecurity firm Lookout Inc. and digital rights NGO the Electronic Frontier Foundation, suggests that Lebanon’s government is, at the very least, complicit in this blatant cyber espionage campaign; undertaken by a group of operatives under the banner of Dark Caracal.

Following Annahar’s thorough analysis of the report, below are the key findings and results that show the severity of the breach and what it encompasses.

  • vs
  • vs

    Sunday, March 25, Al
    Arabiya TV channel reported that the IDF attacked several positions of
    Hezbollah on the border of Lebanon and Syria. According to these reports, the blow was struck against the Shiite grouping in the Bekaa Valley.

    At the same time, the television channel associated with Hezbollah denies this information. The
    website of the Al-Mayadin TV channel says that rumors about the Israeli
    attack on the position of the grouping do not correspond to reality.

    Press service of the IDF in the foreign press does not comment

  • Niemals

    In January 20, 2018 we heard about “Analysis of Lebanon’s recently discovered state-sponsored hacking”.

    Now we hear that Lebanese hackers reportedly managed to steal vast amount of data from government, corporation, and even security forces, then sold it to unknown parties.

    Several Lebanese nationals are reportedly under arrest in the case, according to an Arabic-language report in the al-Akhbar daily.

    The report says the hack, said to be “the largest in the history of Lebanon,” involved large-scale theft of data from its targets. The culprits were then selling the data to as-yet unknown parties.

    “The extent of the damage is still unknown,” officials told al-Akhbar.

    The hack was discovered by a Lebanese internet service provider, which turned to authorities after its systems were hacked. The country’s Internal Security Forces were able to identity the alleged hacker, who was arrested alongside another suspect. The investigation has since led to multiple additional suspects, including someone al-Akhbar described as a relative of a well-known business figure.

    The names of the suspects have not been released, and many details are being withheld from the public as the investigation continues, Lebanese media reported.