UAE blocks over 600 cyberattacks targeting critical sectors
March 24, 2025 | 2 min read
On March 24, 2025, the UAE Cybersecurity Council confirmed 634 cyberattacks targeting critical public and private organizations across the United Arab Emirates (UAE). The threat actor, identified as “rose87168,” exploited vulnerabilities in Oracle Cloud’s Single Sign-On (SSO) and Lightweight Directory Access Protocol (LDAP) systems, leading to the exfiltration of approximately 6 million user credentials globally. These credentials included sensitive data such as passwords and keys, potentially affecting over 140,000 tenants worldwide.
The UAE’s proactive cybersecurity measures were instrumental in blocking these attacks, underscoring the nation’s commitment to safeguarding vital infrastructure and sensitive data.
The attacks predominantly targeted government entities and businesses through ransomware and phishing two of the most common types of cyber threats. The attacker aimed to exploit vulnerabilities in essential systems, with potential consequences ranging from data breaches to operational disruptions.
This incident highlights the urgent need for robust cybersecurity measures to defend against increasingly sophisticated cyberattacks. Continuous vigilance and the adoption of advanced security protocols are essential to protect against evolving threats in the digital landscape.
The Path Forward: Strengthening Cyber Resilience
To counter these evolving threats, the UAE Cybersecurity Council has prioritized advanced security measures to protect national infrastructure.
One key focus area is email security, as phishing and domain spoofing remain among the most effective cyberattack methods. DMARC (Domain-based Message Authentication, Reporting & Conformance), SPF (Sender Policy Framework), and DKIM (DomainKeys Identified Mail) have become critical tools for organizations looking to protect their domains from being used in cyberattacks.
While these measures help prevent unauthorized email senders, a major risk still exists: look-alike domains. Cybercriminals frequently register deceptive domain names that closely resemble legitimate brands, tricking users into disclosing sensitive information or clicking on malicious links.
Organizations must adopt a proactive approach to:
- Monitor for look-alike domain registrations
- Investigate and take down fraudulent domains
- Strengthen brand protection measures to prevent impersonation
The Current State of DMARC Adoption in the UAE
DMARC adoption in the Middle East has gained impressive momentum in recent years, surpassing several global benchmarks. As of January 2025, 96% of UAE and KSA organizations listed in the Forbes Global 2000 have published a DMARC record.
However, only 68% have implemented the strictest “reject” policy. Notably, UAE-based organizations lead the way, with 92% fully enforcing DMARC policies.
This high adoption rate reflects the country’s commitment to cybersecurity and its ability to set an example for organizations worldwide. Organizations that fail to secure their domains risk financial loss, reputational damage, and legal consequences.
How Skysnag Helps
Modern cyber threats demand more than just email protocol configuration they require real-time enforcement, active monitoring, and brand-level protection. Skysnag equips organizations with the tools to move beyond basic compliance and into resilient, scalable email security.
With Skysnag, organizations can:
- Authenticate every message using DMARC, SPF, and DKIM to stop phishing and spoofing at the source.
- Gain live visibility into unauthorized activity and misuses of your domain before they impact your stakeholders.
- Detect look-alike domains and impersonation attempts targeting your brand.
- Enforce domain policies automatically, reducing manual overhead while improving deliverability.
- Align with global compliance standards and build trust across your communications ecosystem.
To help organizations identify and close gaps, Skysnag offers a free domain security assessment covering your current authentication posture, exposure to impersonation, and actionable next steps for hardening your domain.
Get Ahead of the Threat
Cyberattacks don’t wait. Neither should your defenses.
Secure your domain, protect your communications, and strengthen your brand’s digital trust. Start with a free assessment from Skysnag and take the first step toward a more secure future.
You might be interested in reading:
