The cybercriminals managed to access substantial amounts of confidential information from both companies and government agencies.
#Cybersecurity #IranianGroup #Israel #iran #DataBreach #CyberToufan
As per reports from the cyber intelligence platform FalconFeedsio, the recently emerged Iranian hacking group, Cyber Toufan, has publicly disclosed pilfered data from 49 Israeli companies. Experts …
FalseFont, the bespoke backdoor deployed in the campaign disclosed by Microsoft, grants its operators remote access to compromised systems, enabling file execution and transfer to command-and-control (C2) servers.
In the most recent intrusions in November 2023, the group utilized SimpleHelp and Venom Proxy, in addition to a custom keylogger and other publicly available tools.
#Cybersecurity #Africa #IranianGroup #Malware #Iran #MuddyWater #MuddyC2Go
The nation-state actor MuddyWater, associated with Iran, has employed a recently identified command-and-control (C2) framework named MuddyC2Go in its attacks on the telecommunications sector in Egy…
The motives behind these attacks have been chillingly clear. Agonizing Serpens sought to obtain sensitive information, including personally identifiable data (PII) and valuable intellectual property.
#Iran #Cybersecurity #Israel #Malware #Cyberattack #IranianGroup #APT
In a series of destructive cyberattacks that began in January 2023, Israeli higher education and technology sectors found themselves in the crosshairs of malicious actors with a sinister agenda. Th…
MuddyWater is a state-sponsored group engaged in cyber espionage, operating as a subordinate element within Iran’s Ministry of Intelligence and Security (MOIS).
#Iran #Cybersecurity #Israel #Phishing #IranianGroup #Cyberattack #MuddyWater
The Iranian state-sponsored cyber group, known as MuddyWater, has been identified as the culprit behind a fresh spear-phishing campaign aimed at two Israeli entities. The primary objective of this …
The malware uses IOCTLs (Input/Output Control) to interact directly with the underlying HTTP.sys driver, making it stealthier and harder to detect by security solutions.
#Cybersecurity #Iran #Cyberattack #IranianGroup #MOIS #Government
A threat actor affiliated with Iran’s Ministry of Intelligence and Security (MOIS) has been conducting a sophisticated cyber espionage campaign targeting various sectors in the Middle East fo…
This cyber offensive, codenamed “Crambus” by the cybersecurity firm, saw the adversary employ the PowerExchange implant to closely monitor incoming emails sent from an Exchange Server.
The OilRig cyber threat actor, with suspected ties to Iran, embarked on an extensive eight-month campaign targeting an undisclosed government entity in the Middle East from February to September 20…
The incident in Yavne was a reminder of how important it is to pay attention to cybersecurity in today’s world, especially in light of the threat of cyberwars.
#Cybersecurity #HackerGroup #Cyberattack #IranianGroup #Israel #AV3NGERS
During the initial phase of the campaign, Peach Sandstorm conducted password spray campaigns against thousands of organizations across various sectors and geographical locations.
New findings from Microsoft have revealed that Iranian nation-state actors have been carrying out password spray attacks against numerous organizations worldwide between February and July 2023. Mic…
Freemind
