Threat actors continue to exploit cloud services for cyber espionage, and a new campaign by a threat cluster named WIP26, discovered recently by researchers at Sentinel One in collaboration with QGroup, targeting telecommunication providers in the Middle East, confirms this trend.
In particular what makes this campaign stand out is the abuse of multiple cloud services in different stages of the kill chain in an attempt to evade detect