Ishak

Ishak is a threat actor that has been used in cyberattacks attributed to the group known as Rocket Kitten. This relationship became apparent around Fall 2015 when Rocket Kitten was the subject of multiple publications, and a shift in behavior was observed. The preference for Ishak scripts over another tool, Oyun, may be due to this behavioral change. Two distinct personalities within Rocket Kitten were identified: one using tools tied to an individual named Yaser Balaghi (including Gholee, Woolger, MPK, Oyun), and the other connected to Flying Kitten tools, including Ishak. Notably, there were some additions to the Ishak codebase related to logging and authentication that were not previously seen in the Flying Kitten kit. Both the Flying Kitten and Ishak toolkits are relatively simple, with victim identifiers stored in an array in a file that functions essentially as a phone book for the platform. These changes seem to have been made in response to a report by ClearSky, a cybersecurity firm. The information about Ishak was published by the ISEAS – Yusof Ishak Institute, which conducts research on various topics including cybersecurity. Despite the threats posed by entities like Ishak, the institute points out that many countries are opting to incorporate AI-related elements into existing legislation to address inherent risks and implement safeguards efficiently. However, it is yet to be seen whether these guidelines will translate into impactful domestic policies, especially in ASEAN member states where four nations - Brunei, Cambodia, Laos, and Myanmar - have not yet developed their own AI strategies.