AridViper is a threat actor attributed to PS, also known as Two-tailed Scorpion, APT-C-23, Bearded Barbie. This group is tracked in the Strobes VI threat intelligence database.

What vulnerabilities does AridViper exploit?

Specific CVE exploitation data for AridViper is being tracked. Check the Strobes VI threat actor profile for updates.

AridViper

Also known as: Two-tailed Scorpion, APT-C-23, Bearded Barbie, Arid Viper, Desert Falcon

Exploited CVEs

Overview

AridViper is a state-sponsored APT primarily targeting military personnel, journalists, and dissidents in the Middle East, with a focus on Israel and Palestine. The group employs custom-developed mobile malware, including variants like AridSpy, GnatSpy, and Micropsia, often delivered through spear-phishing emails and deceptive applications. Their operations involve sophisticated social engineering tactics, including the use of fake social media profiles and weaponized apps masquerading as legitimate services. AridViper's activities are characterized by a blend of technical sophistication and psychological manipulation, aiming to exfiltrate sensitive data from compromised systems.

Exploited Vulnerabilities

No exploited CVEs have been attributed to this threat actor yet.

Browse CVE Database