Iranian Hackers Exploiting VMware RCE Bug to Deploy ‘Core Impact’ Backdoor
An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial access and deploy...
Tagged: Iranian
Iranian Hackers Targeting Turkey and Arabian Peninsula in New Malware Campaign
The Iranian state-sponsored threat actor known as MuddyWater has been attributed to a new swarm of attacks targeting Turkey and the Arabian Peninsula with...
Iranian Hackers Using New Spying Malware That Abuses Telegram Messenger API
An Iranian geopolitical nexus threat actor has been uncovered deploying two new targeted malware that come with “simple” backdoor functionalities as part of an...
US, UK Warn of Iranian Cyberattacks on Government, Commercial Networks
Governmental agencies in the United States and the United Kingdom warn of cyberespionage operations that the Iranian state-sponsored threat actor MuddyWater has been running...
Iranian State Broadcaster IRIB Hit by Destructive Wiper Malware
An investigation into the cyberattack targeting Iranian national media corporation, Islamic Republic of Iran Broadcasting (IRIB), in late January 2022 resulted in the deployment...
Iranian Hackers Targeting VMware Horizon Log4j Flaws to Deploy Ransomware
A “potentially destructive actor” aligned with the government of Iran is actively exploiting the well-known Log4j vulnerability to infect unpatched VMware Horizon servers with...
Iranian Hackers Using New Marlin Backdoor in ‘Out to Sea’ Espionage Campaign
An advanced persistent threat (APT) group with ties to Iran has refreshed its malware toolset to include a new backdoor dubbed Marlin as part...
Newly Detected “StrifeWater” RAT Linked to Iranian APT
The Iranian threat group known as Moses Staff was first spotted in October 2021. It claims its purpose is to harm Israeli companies by...
Iranian Hackers Using New PowerShell Backdoor in Cyber Espionage Attacks
An advanced persistent threat group with links to Iran has updated its malware toolset to include a novel PowerShell-based implant called PowerLess Backdoor, according...
Researchers Uncover New Iranian Hacking Campaign Targeting Turkish Users
Details have emerged about a previously undocumented malware campaign undertaken by the Iranian MuddyWater advanced persistent threat (APT) group targeting Turkish private organizations and...