SEARCH
Archive
Cobalt Mirage Actors Deploying Drokbk Malware in Recent Campaigns
The Iranian Cobalt Mirage threat group has been using the Drokbk malware in recent intrusions and employing GitHub repositories as dead drop resolvers.
U.S. Government Hits Alleged Iranian Hackers with Indictments, Sanctions
The U.S. government indictments, sanctions and detailing of TTPs were part of a wave of actions against Iran-linked threat actors that allegedly targeted critical infrastructure organizations since 2020.
Iranian Attackers Upgrade Social Engineering Tactics
Iranian threat actor TA453 has been sending spear-phishing emails that impersonate real individuals from Western foreign policy research institutions.
White House Plans ‘Further Action’ After Iranian Cyberattack on Albania
The White House and the Albanian government blamed Iranian government-supported actors for a July attack on Albania infrastructure, and said futrher action would be forthcoming.
Iranian APT Using Custom Tool to Scrape Gmail, Outlook Inboxes
The Iranian APT group known as Charming Kitten has been using a new tool called HYPERSCRAPE to steal the contents of Gmail, Yahoo, and Outlook 365 inboxes.