Date of report
- December 2016
Affiliations
- Believed to have been partially the work of Chrysene
A threat actor used malware known as Shamoon 2.0 to exfiltrate and delete data from computers in the Saudi transportation sector.
Suspected victims
- General Authority of Civil Aviation of Saudi Arabia
Suspected state sponsor
- Unknown
Type of incident
- Data destruction
Target category
- Government
Victim government reaction
- Unknown