Crafty Camel is an Iran-aligned advanced persistent threat leveraging spearphishing, cloud credential theft, and identity-centric attacks to conduct long-term cyber espionage. Active since 2017, the group targets government, defense, energy, and telecom organizations across the Middle East, Europe, and the US.