A new phishing campaign has been identified that is highly-targeted, focusing on less than 5 United Arab Emirates entities. The campaign delivers a new Golang backdoor called Sosano. The phishing attacks, targeted at aviation and satellite communications organizations, are being tracked as UNK_CraftyCamel. The attacker has used a compromised email account that belongs to INDIC Electronics, an Indian electronics company. INDIC Electronics had trusted business ties to the targets, allowing the attacker to tailor its phishing attacks. 

Read more: https://thehackernews.com/2025/03/suspected-iranian-hackers-used.html