Hacker, Threats & Malware, Virus & Malware
March 25, 2024
Via: Security AffairsProofpoint researchers observed the Iran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, TA450, and Static Kitten) was behind a new phishing campaign in March 2024 that attempted to drop a legitimate Remote Monitoring and Management (RMM) solution called Atera on the […]
February 7, 2024
Via: The RegisterIran’s anti-Israel cyber operations are providing a window into the techniques the country may deploy in the run-up to the 2024 US Presidential elections, Microsoft says. An analysis of Iran’s activity, published by Microsoft Threat Analysis Center (MTAC) today, concluded […]
January 19, 2024
Via: SecureWorldMicrosoft has released a report detailing recent activity by Mint Sandstorm, an Iranian state-sponsored hacking group, targeting high-profile academics and researchers working on Middle Eastern affairs. The report highlights new tactics and malware, signaling an escalation in capabilities. According to […]
Threats & Malware, Virus & Malware
January 2, 2024
Via: Security AffairsHudson Researchers reported that on December 20th, a hacker using the moniker ‘irleaks’ announced the availability for sale of over 160,000,000 records allegedly stolen from 23 leading insurance companies in Iran. The hacker claims that stolen data includes first name, […]
November 3, 2023
Via: Security AffairsIran-linked APT group MuddyWater (aka SeedWorm, TEMP.Zagros, and Static Kitten) is targeting Israeli entities in a new spear-phishing campaign, Deep Instinct’s Threat Research team reported. The phishing messages were aimed at deploying a legitimate remote administration tool called Advanced Monitoring […]
February 6, 2023
Via: CSO OnlineMicrosoft’s Digital Threat Analysis Center (DTAC) has attributed a recent influence operation targeting the satirical French magazine Charlie Hebdo to an Iranian nation-state actor. Microsoft dubbed the threat group, which calls itself Holy Souls, NEPTUNIUM. It has also been identified […]
October 13, 2022
Via: Security AffairsPOLONIUM APT focused only on Israeli targets, it launched attacks against more than a dozen organizations in various industries, including engineering, information technology, law, communications, branding and marketing, media, insurance, and social services. Microsoft MSTIC researchers believe that the attackers […]
September 7, 2022
Via: DataBreach TodayAlbania cut diplomatic ties with Iran following a summer cyberattack that disrupted the country’s online governmental services portal. Prime Minister Edi Rama today said he gave Iranian diplomats 24 hours to depart the country after establishing Iranian responsibility for the […]
November 1, 2021
Via: Security WeekTuesday’s attack “technically” resembles two previous incidents whose perpetrators “were unquestionably our enemies, namely the United States and the Zionist regime”, the Revolutionary Guards’ Gholamreza Jalali said. “We have analysed two incidents, the railway accident and the Shahid Rajaei port […]
July 30, 2021
Via: The Hacker NewsA cyber attack that derailed websites of Iran’s transport ministry and its national railway system earlier this month, causing widespread disruptions in train services, was the result of a never-before-seen reusable wiper malware called “Meteor.” The campaign — dubbed “MeteorExpress” […]
April 12, 2021
Via: Security WeekIsrael has not claimed responsibility for the attack. It rarely does for operations carried out by its secret military units or its Mossad intelligence agency. However, Israeli media widely reported that the country had orchestrated a devastating cyberattack that caused […]
November 10, 2020
Via: The HillPresident-elect Joe Biden is expected to take a hard line against foreign election interference by pushing back against persistent cyber adversaries like Russia and Iran. Biden took a hard line on the issue in the lead-up to last week’s election, […]
October 22, 2020
Via: DataBreach TodayIran has obtained Americans’ voter registration data and is using it in an attempt to push misinformation before the Nov. 3 presidential election, U.S. officials warn. In a Wednesday press conference at FBI headquarters in Washington, Director of National Intelligence […]
August 24, 2020
Via: Security AffairsThe attackers used Dharma ransomware and a mix of publicly available tools to target companies in Russia, Japan, China, and India. All the affected organizations had hosts with Internet-facing RDP and weak credentials. The hackers typically demanded a ransom between […]
August 10, 2020
Via: Security AffairsThe Director of the U.S. National Counterintelligence and Security Center (NCSC) William Evanina shared information on ongoing operations aimed at influencing the 2020 U.S. elections. “Many foreign actors have a preference for who wins the election, which they express through […]
July 20, 2020
Via: Security AffairsIn April an attack hit an Israeli water facility attempting to modify water chlorine levels, last week officials from the Water Authority revealed two more cyber attacks on other facilities in the country. Two cyber-attacks took place in June and […]
June 5, 2020
Via: Security AffairsForeign hackers are targeting campaign staffs for both President Donald Trump and Democratic rival Joe Biden ahead of the November US election. The news was revealed by Google in a series of tweets published by Google’s threat analysis chief Shane […]
May 12, 2020
Via: Security AffairsIranian officials announced on sunday that hackers damaged a small number of systems at the port of Shahid Rajaei in the city of Bandar Abbas. Bandar Abbas is the capital of Hormozgān Province on the southern coast of Iran, on […]
Mobile, Mobile security, Threats & Malware, Vulnerabilities
April 7, 2020
Via: Threat PostA rash of COVID-19 Android mobile apps have emerged that are aimed at helping citizens in Iran, Italy and Colombia track symptoms and virus infections. However, they’re also putting people’s privacy and the security of their data at risk, researchers […]
January 24, 2020
Via: DataBreach TodayHackers who may have ties to Iran have recently turned their attention to the European energy sector, using open source tools to target one firm’s network as part of an cyberespionage operation, according to the security firm Recorded Future. The […]