Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
|
2023-09-11 12:19:26 |
Iranian Hackers Backdoor 34 Orgs avec un nouveau sponsor malware Iranian hackers backdoor 34 orgs with new Sponsor malware (lien direct) |
Un acteur de menace national connu sous le nom de \\ 'Charming Kitten \' (Phosphorus, TA453, APT35 / 42) a été observé en déploiement d'un logiciel malveillant de porte dérobée auparavant inconnu nommé \\ 'sponsor \' contre 34 entreprises à travers le monde.[...]
A nation-state threat actor known as \'Charming Kitten\' (Phosphorus, TA453, APT35/42) has been observed deploying a previously unknown backdoor malware named \'Sponsor\' against 34 companies around the globe. [...] |
Malware
Threat
|
APT 35
|
★★
|
|
2023-07-09 10:13:16 |
Les pirates de chaton charmants utilisent de nouveaux \\ 'noknok \\' malware pour macOS Charming Kitten hackers use new \\'NokNok\\' malware for macOS (lien direct) |
Les chercheurs en sécurité ont observé une nouvelle campagne qu'ils attribuent au charmant groupe Kitten APT où les pirates ont utilisé de nouveaux logiciels malveillants Noknok qui ciblent les systèmes MacOS.[...]
Security researchers observed a new campaign they attribute to the Charming Kitten APT group where hackers used new NokNok malware that targets macOS systems. [...] |
Malware
|
APT 35
APT 35
|
★★
|
|
2022-02-01 14:00:00 |
Cyberspies linked to Memento ransomware use new PowerShell malware (lien direct) |
An Iranian state-backed hacking group tracked as APT35 (aka Phosphorus or Charming Kitten) is now deploying a new backdoor called PowerLess and developed using PowerShell. [...] |
Ransomware
Malware
Conference
|
APT 35
APT 35
|
|
|
2022-01-11 18:17:45 |
State hackers use new PowerShell backdoor in Log4j attacks (lien direct) |
Hackers believed to be part of the Iranian APT35 state-backed group (aka 'Charming Kitten' or 'Phosphorus') has been observed leveraging Log4Shell attacks to drop a new PowerShell backdoor. [...] |
Conference
|
APT 35
|
|
|
2020-02-05 12:57:16 |
(Déjà vu) Charming Kitten Hackers Impersonate Journalist in Phishing Attacks (lien direct) |
A hacker group linked with the Iranian government attempted to steal email login information from their targets through fake interview requests and impersonating a New York Times journalist. [...] |
|
APT 35
|
|
|
2019-10-04 14:53:19 |
Microsoft Discovers Iranian Hacking Campaign Targeting U.S. Politics (lien direct) |
Microsoft says that a state-sponsored Iranian cyber-espionage group tracked as Phosphorus by the Microsoft Threat Intelligence Center (MSTIC) attempted to get account info on over 2,700 of its customers, attack 241 of them, and compromised four accounts between August and September. [...] |
Threat
Conference
|
APT 35
|
|
|
2019-03-27 15:39:03 |
Microsoft Retaliates Against APT35 Hacker Group by Seizing 99 Domains (lien direct) |
Court documents unsealed today show how Microsoft's Digital Crimes Unit was able to block some of the cyber attacks conducted by an Iranian-backed advanced persistence threat (APT) group by taking over domains used as part of their core operations. [...] |
Threat
|
APT 35
|
|
|
2017-12-06 04:45:40 |
HBO Hacker Was Part of Iran\'s "Charming Kitten" Elite Cyber-Espionage Unit (lien direct) |
Behzad Mesri, the Iranian national the US has accused of hacking HBO this year, is part of an elite Iranian cyber-espionage unit known in infosec circles as Charming Kitten, according to a report released yesterday by Israeli firm ClearSky Cybersecurity. [...] |
Conference
|
APT 35
|
|