May 20, 2024 at 12:10PM The BiBi Wiper malware’s new variants are targeting Israeli and Albanian systems, linked to an Iranian hacking group named ‘Void Manticore.’ Check Point Research uncovered newer variants and operational overlaps involving another Iranian threat group. The malware is designed to complicate data restoration efforts, significantly extending downtime for targeted victims … Read more
April 24, 2024 at 10:48AM An elite team of Iranian hackers infiltrated US companies and government agencies’ employee accounts in a multiyear cyber espionage campaign, aiming to steal military secrets. Entities including the US Departments of Treasury and State, defense contractors, and a hospitality company were compromised. Four Iranian nationals have been indicted, but their … Read more
April 23, 2024 at 04:00PM Four Iranian nationals were indicted in Manhattan federal court for conducting a cyber-espionage campaign targeting U.S. government departments, defense contractors, and private firms, using sophisticated hacking techniques to access and compromise critical systems. The group, still at large, is accused of targeting over a dozen private US companies, primarily cleared … Read more
March 13, 2024 at 03:05AM Iranian hacktivists executed a supply chain attack on Israeli universities by breaching a local technology provider, Rashim Software, and accessing universities’ systems. Op Innovate confirmed the exposure of student data and identified weak access controls and email-based authentication as contributing to the breach. The incident highlights the risk of supply … Read more
March 1, 2024 at 09:47AM The U.S. Department of Justice indicted Alireza Shafie Nasab, an Iranian national, for cyber-espionage targeting U.S. government and defense entities. Operating from 2016 to April 2021, Nasab and co-conspirators employed phishing and hacking techniques to compromise over 200,000 devices, resulting in charges carrying 5 to 20 years in prison. The … Read more
February 29, 2024 at 09:27AM Iranian hackers have been utilizing Microsoft Azure cloud infrastructure in attacks on aerospace, aviation, and defense organizations in the Middle East, particularly in Israel and the UAE. The hacking group, UNC1549, has deployed two backdoors named MiniBike and MiniBus. These activities are linked to Iran’s Islamic Revolutionary Guard Corps. Mandiant … Read more
February 9, 2024 at 04:09PM Iran’s offensive operations against Israel in the Israel-Hamas conflict quickly escalated and expanded, with cyberattacks and influence operations increasing. Iranian threat actors coordinated with Hamas and expanded their targets to Albania, Bahrain, and the US. The collaboration between Iranian threat actors increased, leading to higher effectiveness. The increased collaboration poses … Read more
January 17, 2024 at 03:39PM Microsoft warns that an Iranian hacker group, linked to the IRGC, is targeting high-profile individuals in research organizations and universities in Europe and the US using spearphishing attacks. The attackers use custom-tailored phishing emails and new backdoor malware called MediaPl to steal sensitive data and gather intelligence aligning with Iranian … Read more
January 2, 2024 at 05:12PM The Aliquippa water authority in western Pennsylvania fell victim to an international cyberattack by Iranian-backed hackers. The attack targeted a piece of Israeli-made equipment, prompting concerns about potential dangers to water utilities across the US. Efforts to address cybersecurity vulnerabilities and funding challenges continue at the state and federal levels. … Read more
December 28, 2023 at 02:06PM Albania’s Parliament confirmed a cyberattack on its data system, resulting in a temporary service halt. The attack did not compromise the system’s data, but experts are investigating potential consequences. Iranian-based hackers allegedly targeted other entities. This incident follows a previous cyberattack that led to severed diplomatic ties with Iran. The … Read more