November 12, 2023 at 10:37AM Imperial Kitten, a threat actor linked to the Iranian Armed Forces, has been conducting cyberattacks since 2017. Recently, they targeted transportation, logistics, and technology firms using phishing emails with malicious attachments. They gained network access, moved laterally, and communicated with a command and control server using custom malware. Previously, they … Read more
November 10, 2023 at 03:21AM A group with links to Iran, known as Imperial Kitten, targeted transportation, logistics, and technology sectors in the Middle East, including Israel, in October 2023. They utilize social engineering and various techniques such as watering hole attacks, one-day exploits, phishing, and targeting IT service providers for initial access. Microsoft notes … Read more
October 26, 2023 at 04:48AM The Iranian threat actor Tortoiseshell is responsible for a new series of watering hole attacks. They use a malware called IMAPLoader, which acts as a downloader for additional payloads. The attacks target various sectors, including maritime, shipping, logistics, and nuclear industries. Tortoiseshell has a history of strategic website compromises and … Read more