Iran-linked threat actor #NimbusManticore is targeting US aviation and software firms with trojanized Zoom installers, AI-assisted malware, SEO poisoning, and fake hiring campaigns deploying a new backdoor called #MiniFast.
Read: https://hackread.com/iran-nimbus-manticore-trojan-zoom-installers-us-firms/
From Check Point Research: Nimbus Manticore Targets the US
#CheckPoint Research has revealed new campaigns of #Nimbus #Manticore, an IRGC-linked group that resurfaced during Operation #EpicFury with upgraded techniques. The campaigns use SEO poisoning and career-themed phishing across the United States, Europe, and the Middle East, and then delivered a new #MiniFast #backdoor.
Key Findings Introduction During the recent geopolitical tensions in the Middle East, we reported on multiple Iran-nexus threat actors advancing Iran’s strategic objectives through cyber operations. These activities included targeting internet-connected cameras, conducting destructive attacks against US and Israeli entities, and exfiltrating data from cloud environments to support broader kinetic and intelligence-gathering efforts. Nimbus Manticore (also tracked as UNC1549) is an IRGC-affiliated threat […]
Hackread.com
Daniel Kuhl ✌🏻☮️☕️