April 12, 2024 at 06:15AM MuddyWater, an Iranian threat actor, has been linked to a new command-and-control (C2) infrastructure called DarkBeatC2. This comes after the deployment of various legitimate Remote Monitoring and Management (RMM) solutions in spear-phishing attacks. Additionally, Iranian threat actor Peach Sandstorm has been seen using a backdoor called FalseFont in attacks targeting … Read more
December 23, 2023 at 07:54AM Iranian cyberspies, identified as Peach Sandstrom by Microsoft, are targeting defense industrial base organizations with a new backdoor called FalseFont. APT33, which Mandiant tracks as Iran-backed, engages in strategic cyberespionage against organizations in the US, Saudi Arabia, and South Korea. Additionally, 443 online shops have been compromised by cyber crooks … Read more
December 22, 2023 at 11:52AM Microsoft observed Iranian nation-state cyberattackers Peach Sandstorm delivering FalseFont backdoor to individuals within the military-industrial sector, aiming for global infrastructure supporting military research. FalseFont allows remote access, file execution, and data transmission to control servers. It was first observed in early November, and the group’s ongoing improvements suggest continued interest … Read more
December 22, 2023 at 07:45AM Microsoft has raised an alert on Iranian state-sponsored attacks targeting US defense industrial base (DIB) organizations. The attacks, attributed to Peach Sandstorm, a group also known as APT33, are believed to have been active since at least 2013. A newly developed backdoor named FalseFont has been observed, allowing remote access … Read more
December 22, 2023 at 01:18AM Microsoft has observed an Iranian threat actor targeting organizations in the Defense Industrial Base sector with a newly discovered backdoor named FalseFont. This backdoor allows remote access, file launching, and data transmission to its command-and-control servers. The campaign aligns with previous activity by the threat actor, indicating an ongoing evolution … Read more