An advanced hacker group, Volatile Cedar, believed to be linked to the Lebanese Hezbollah Cyber Unit, has been quietly attacking companies worldwide in spying operations.
The hacker likely accessed more than 250 Oracle and Atlassian servers belonging largely to enterprises providing mobile communications and internet-based services.
Also known as Lebanese Cedar, the hacker has been active since at least 2012 but fell of the investigators’ radar in 2015. Their operations reemerged in early 2020 with what security investigators call the BeardStache global campaign, which may have affected a slew of companies.