The article below is an analysis and follow-up to the analysis titled ‘Intrusion into Middle East Critical National Infrastructure’ (full report here), conducted by the FortiGuard Incident Response Team (FGIR)[1], which investigated a long-term cyber intrusion targeting critical national infrastructure (CNI) in the Middle East.
The Fortinet report revealed that threat actors had installed numerous web shell servers on the compromised system. In this follow-up, analysts conducted a deep analysis