📰 Iran-Linked Pay2Key Ransomware Targeted US Healthcare Amidst Military Conflict

🇮🇷 Iran-linked Pay2Key ransomware hit a US healthcare org during recent military conflict. Unusually, no data was stolen, suggesting a disruptive, state-directed motive over financial gain. #Ransomware #Pay2Key #Iran #Healthcare #CyberWarfare

🔗 https://cyber.netsecops.io/articles/iran-linked-pay2key-ransomware-hit-us-healthcare-org-during-conflict/?utm_source=mastodon&utm_medium=social&…

Good day everyone!

Morphisec released an insightful report covering Iranian Cyber Warfare that is targeting the West and other enemies of Iran. The APT involved is #Pay2Key, "an Iranian-backed ransomware-as-as-service (RaaS) operation" that is linked to the Fox Kitten APT group and "closely tied to the well-known #Mimic ransomware."

Normally I call out behaviors and TTPs related but for this report I want to call out the completeness of the report. Not only does it provide more than enough technical details to make actionable in any environment but it also provides a TON of threat intel to support their claims giving the readers and audience an idea if they would be a target or not. It is a great report and I encourage you all to read it! Enjoy and Happy Hunting!

Pay2Key’s Resurgence: Iranian Cyber Warfare Targets the West
https://www.morphisec.com/blog/pay2key-resurgence-iranian-cyber-warfare/

Intel 471 Cyborg Security, Now Part of Intel 471 #ThreatIntel #ThreatHunting #ThreatDetection #HappyHunting #readoftheday

#Pay2Key et #Wannascream : de nouveaux indices confirmeraient que les cyber-attaquants derrière les #ransomwares seraient en Iran !

https://blog.sosordi.net/2020/11/pay2key-et-wannascream-de-nouveaux-indices-confirmeraient-que-les-cyber-attaquants-derriere-les-ransomwares-seraient-en-iran.html

#securite