Shamoon 2.0
Date of report
  • December 2016
  • Believed to have been partially the work of Chrysene
A threat actor used malware known as Shamoon 2.0 to exfiltrate and delete data from computers in the Saudi transportation sector.
Suspected victims
  • General Authority of Civil Aviation of Saudi Arabia
Suspected state sponsor
  • Unknown
Type of incident
  • Data destruction
Target category
  • Government
Victim government reaction
  • Unknown