Top

Tag: Iran


Hacker, Threats & Malware, Virus & Malware

Iran-Linked APT TA450 embeds malicious links in PDF attachments

March 25, 2024

Via: Security Affairs

Proofpoint researchers observed the Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, TA450, and Static Kitten) was behind a new phishing campaign in March 2024 that attempted to drop a legitimate Remote Monitoring and Management (RMM) solution called Atera on the […]


Cyber-crime, Malware

Iran’s cyber operations in Israel a potential prelude to US election interference

February 7, 2024

Via: The Register

Iran’s anti-Israel cyber operations are providing a window into the techniques the country may deploy in the run-up to the 2024 US Presidential elections, Microsoft says. An analysis of Iran’s activity, published by Microsoft Threat Analysis Center (MTAC) today, concluded […]


Cyber warfare, Cyber-crime

Microsoft: Iranian Hackers Evolving Techniques in Espionage Campaigns

January 19, 2024

Via: SecureWorld

Microsoft has released a report detailing recent activity by Mint Sandstorm, an Iranian state-sponsored hacking group, targeting high-profile academics and researchers working on Middle Eastern affairs. The report highlights new tactics and malware, signaling an escalation in capabilities. According to […]


Threats & Malware, Virus & Malware

Multiple organizations in Iran were breached by a mysterious hacker

January 2, 2024

Via: Security Affairs

Hudson Researchers reported that on December 20th, a hacker using the moniker ‘irleaks’ announced the availability for sale of over 160,000,000 records allegedly stolen from 23 leading insurance companies in Iran. The hacker claims that stolen data includes first name, […]


Cyber warfare, Cyber-crime

MuddyWater has been spotted targeting two Israeli entities

November 3, 2023

Via: Security Affairs

Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, and Static Kitten) is targeting Israeli entities in a new spear-phishing campaign, Deep Instinct’s Threat Research team reported. The phishing messages were aimed at deploying a legitimate remote administration tool called Advanced Monitoring […]


Cyber warfare, Cyber-crime

Microsoft attributes Charlie Hebdo attacks to Iranian nation-state threat group

February 6, 2023

Via: CSO Online

Microsoft’s Digital Threat Analysis Center (DTAC) has attributed a recent influence operation targeting the satirical French magazine Charlie Hebdo to an Iranian nation-state actor. Microsoft dubbed the threat group, which calls itself Holy Souls, NEPTUNIUM. It has also been identified […]


Cyber warfare, Cyber-crime

POLONIUM APT targets Israel with a new custom backdoor dubbed PapaCreep

October 13, 2022

Via: Security Affairs

POLONIUM APT focused only on Israeli targets, it launched attacks against more than a dozen organizations in various industries, including engineering, information technology, law, communications, branding and marketing, media, insurance, and social services. Microsoft MSTIC researchers believe that the attackers […]


Cyber warfare, Cyber-crime

Albania Cuts Diplomatic Ties With Iran After Cyberattack

September 7, 2022

Via: DataBreach Today

Albania cut diplomatic ties with Iran following a summer cyberattack that disrupted the country’s online governmental services portal. Prime Minister Edi Rama today said he gave Iranian diplomats 24 hours to depart the country after establishing Iranian responsibility for the […]


Cyber warfare, Cyber-crime

Iran Suspects Israel and US Behind Fuel Cyber Attack

November 1, 2021

Via: Security Week

Tuesday’s attack “technically” resembles two previous incidents whose perpetrators “were unquestionably our enemies, namely the United States and the Zionist regime”, the Revolutionary Guards’ Gholamreza Jalali said. “We have analysed two incidents, the railway accident and the Shahid Rajaei port […]


Cyber-crime, Malware

A New Wiper Malware Was Behind Recent Cyberattack On Iranian Train System

July 30, 2021

Via: The Hacker News

A cyber attack that derailed websites of Iran’s transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called “Meteor.” The campaign — dubbed “MeteorExpress” […]


Cyber warfare, Cyber-crime

Iran Blames Israel for Sabotage at Natanz Nuclear Site

April 12, 2021

Via: Security Week

Israel has not claimed responsibility for the attack. It rarely does for operations carried out by its secret military units or its Mossad intelligence agency. However, Israeli media widely reported that the country had orchestrated a devastating cyberattack that caused […]


Cyber warfare, Cyber-crime

Biden’s hard stand on foreign election interference signals funding fight

November 10, 2020

Via: The Hill

President-elect Joe Biden is expected to take a hard line against foreign election interference by pushing back against persistent cyber adversaries like Russia and Iran. Biden took a hard line on the issue in the lead-up to last week’s election, […]


Cyber warfare, Cyber-crime

US Alleges Iran Sent Threatening Emails to Democrats

October 22, 2020

Via: DataBreach Today

Iran has obtained Americans’ voter registration data and is using it in an attempt to push misinformation before the Nov. 3 presidential election, U.S. officials warn. In a Wednesday press conference at FBI headquarters in Washington, Director of National Intelligence […]


Cyber-crime, Malware

Cybercriminal greeners from Iran attack companies worldwide for financial gain

August 24, 2020

Via: Security Affairs

The attackers used Dharma ransomware and a mix of publicly available tools to target companies in Russia, Japan, China, and India. All the affected organizations had hosts with Internet-facing RDP and weak credentials. The hackers typically demanded a ransom between […]


Cyber warfare, Cyber-crime

NCSC Director warns of interference on elections tied to Russia, China, Iran

August 10, 2020

Via: Security Affairs

The Director of the U.S. National Counterintelligence and Security Center (NCSC) William Evanina shared information on ongoing operations aimed at influencing the 2020 U.S. elections. “Many foreign actors have a preference for who wins the election, which they express through […]


Cyber warfare, Cyber-crime

Two more cyber attacks hit Israel’s water facilities in June

July 20, 2020

Via: Security Affairs

In April an attack hit an Israeli water facility attempting to modify water chlorine levels, last week officials from the Water Authority revealed two more cyber attacks on other facilities in the country. Two cyber-attacks took place in June and […]


Cyber warfare, Cyber-crime

Google reveals that foreign hackers are already targeting Trump and Biden campaigns

June 5, 2020

Via: Security Affairs

Foreign hackers are targeting campaign staffs for both President Donald Trump and Democratic rival Joe Biden ahead of the November US election. The news was revealed by Google in a series of tweets published by Google’s threat analysis chief Shane […]


Cyber warfare, Cyber-crime

A cyber attack hit a port on Strait of Hormuz, Iran said

May 12, 2020

Via: Security Affairs

Iranian officials announced on sunday that hackers damaged a small number of systems at the port of Shahid Rajaei in the city of Bandar Abbas. Bandar Abbas is the capital of Hormozgān Province on the southern coast of Iran, on […]


Mobile, Mobile security, Threats & Malware, Vulnerabilities

Official Government COVID-19 Mobile Apps Hide a Raft of Threats

April 7, 2020

Via: Threat Post

A rash of COVID-19 Android mobile apps have emerged that are aimed at helping citizens in Iran, Italy and Colombia track symptoms and virus infections. However, they’re also putting people’s privacy and the security of their data at risk, researchers […]


Cyber warfare, Cyber-crime

Hackers Target European Energy Firm: Researchers

January 24, 2020

Via: DataBreach Today

Hackers who may have ties to Iran have recently turned their attention to the European energy sector, using open source tools to target one firm’s network as part of an cyberespionage operation, according to the security firm Recorded Future. The […]