Threat Actor Claims Cyber Campaign Targeting UAE Banking Infrastructure

A threat actor calling itself “Gorz Rostam” has claimed responsibility for a cyber campaign targeting banking infrastructure in the United Arab Emirates.

According to a post published by the group, it alleges that it disrupted banking systems across the Gulf region, took multiple banking servers offline for extended periods, and carried out the operation under the name “Operation Seven Stages.”

At this time, these claims have not been independently verified, and there is no official confirmation that any UAE banks experienced service disruptions related to this announcement.

The campaign name has attracted attention because it may remind cybersecurity professionals of the well-known Cyber Kill Chain, a security model consisting of seven stages used to describe how cyberattacks are planned and executed. Whether this similarity is intentional or simply a coincidence is unknown, but using technical terminology can make an operation appear more sophisticated and intimidating.

The incident also highlights an important aspect of modern cyber warfare. Cybercriminals do not always seek to compromise technology alone. In some cases, they also aim to undermine public confidence and create uncertainty. Even unverified claims can generate concern if they spread widely before the facts are established.

For this reason, cybersecurity professionals rely on technical evidence, official statements, and independent analysis before confirming that an attack has occurred. Verifying information is essential to separating genuine incidents from unsubstantiated claims or attempts to create unnecessary panic.

For the public, the best approach is to follow updates from official banking institutions and trusted cybersecurity sources, avoid relying on rumors shared on social media, and remain cautious of phishing emails, text messages, or fake banking notifications that may exploit public concern during such events.

As cyber threats continue to evolve, maintaining public awareness, verifying information before sharing it, and relying on trusted sources remain key elements of effective cybersecurity and digital resilience.