A sophisticated cyperespionage campaign is believed to target users of Android devices in several Arab countries, including Morocco, revealed Kaspersky Lab researchers last Thursday. The new malware called ZooPark «uses legitimate websites as sources of infection», says the multinational cybersecurity and anti-virus provider headquartered in Moscow in a survey made public on the 3rd of May. «The campaign appears to be a nation-state backed operation aimed at political organizations, activists and other targets based in the region», says Kaspersky. The malware appears as legitimate apps with names like «TelegramGroups» and «Alnaharegypt news», targeting «instant messaging applications, like Telegram, WhatsApp IMO; the web browser (Chrome) and some other applications», says the same source. «The investigation suggests that the attackers are focusing on users based in Egypt, Jordan, Morocco, Lebanon and Iran. Based on the news topics that the attackers used to lure victims into installing the malware, members of the United Nations Relief and Works Agency are among the possible targets of the ZooPark malware.» Kaspersky Lab researchers