ID | Votes | Profile Description |
---|---|---|
OilRig | 4 | OilRig is a well-known threat actor in the cybersecurity landscape, notorious for its sophisticated attacks on various targets, including Middle Eastern telecommunications organizations and Israel's critical infrastructure sector. This entity has been linked to several high-profile campaigns such as |
COBALT GYPSY | 2 | Cobalt Gypsy, also known as APT34, Helix Kitten, Hazel Sandstorm, and OilRig, is an Iranian advanced persistent threat operation that has been active since at least 2014. This threat actor has a history of targeting sectors such as telecommunications, government, defense, oil, and financial services |
Menorah | 2 | The Menorah malware, a novel and malicious software, was discovered in October 2023 as part of a cyberespionage operation conducted by Iranian advanced persistent threat (APT) group, OilRig. Also known as APT34, Helix Kitten, Hazel Sandstorm, and Cobalt Gypsy, the group has been strengthening its cy |
Crambus | 2 | The Iranian Crambus espionage group, also known as OilRig, APT34, and other aliases, is a threat actor with extensive expertise in long-term cyber-espionage campaigns. In the most recent attack between February and September 2023, this group infiltrated an unnamed Middle Eastern government's network |
Helix Kitten | 2 | Helix Kitten, also known as APT34, OilRig, Cobalt Gypsy, Hazel Sandstorm, and Crambus, is a threat actor believed to originate from Iran. The group has been tracked by various cybersecurity firms including FireEye, Symantec, and CrowdStrike, each using different names to identify the same entity. Th |
ID | Type | Votes | Profile Description |
---|---|---|---|
SideTwist | Unspecified | 2 | SideTwist is a malware variant discovered and named by Check Point Research during an investigation into a campaign led by the Iranian threat group APT34 (also known as OilRig). This new backdoor variant was used against what appeared to be a Lebanese target. The SideTwist backdoor, identified via i |
ID | Type | Votes | Profile Description |
---|---|---|---|
APT33 | Unspecified | 2 | APT33, an Iran-linked threat actor also known as Peach Sandstorm, Holmium, Elfin, Refined Kitten, and Magic Hound, has been involved in a series of cyber espionage activities targeting various sectors. The group's primary targets include the government, defense, satellite, oil, and gas sectors in th |
Turla | Unspecified | 2 | Turla, a threat actor linked to Russia, is known for its sophisticated cyber-espionage activities. It has been associated with numerous high-profile attacks, employing innovative techniques and malware to infiltrate targets and execute actions with malicious intent. According to MITRE ATT&CK and MIT |
Preview | Source Link | CreatedAt | Title |
---|---|---|---|
CERT-EU | 10 months ago | Iranian Cyber Spies Use 'LionTail' Malware in Latest Attacks | |
Checkpoint | 10 months ago | From Albania to the Middle East: The Scarred Manticore is Listening - Check Point Research | |
CERT-EU | 10 months ago | What is Advanced Persistent Threat? Uncover the Hidden Dangers! | |
CERT-EU | a year ago | Iranian Hackers Lurked for 8 Months in Government Network | |
CERT-EU | a year ago | New cyber campaign targeted Middle Eastern government, researchers say | |
CERT-EU | a year ago | Iranian hackers lurked in Middle Eastern govt network for 8 months | |
BankInfoSecurity | a year ago | Iran Traps Middle East Nation in 8-Month Espionage Campaign | |
CERT-EU | a year ago | New Menorah malware bolsters OilRig APT's cyberespionage efforts | |
CERT-EU | a year ago | Iran-Linked APT34 Spy Campaign Targets Saudis | |
CERT-EU | a year ago | APT34 Employs Weaponized Word Documents to Deploy New Malware Strain | |
CERT-EU | a year ago | APT34 Employs Weaponized Word Documents to Deploy New Malware Strain | |
CERT-EU | a year ago | Iranian APT34 Employs Menorah Malware for Covert Operations | |
CERT-EU | a year ago | Iranian APT Group OilRig Using New Menorah Malware for Covert Operations | |
CERT-EU | a year ago | How this Israeli Backdoor written in C#/.NET can be used to hack into any company | |
CERT-EU | a year ago | Alert: Phishing Campaigns Deliver New SideTwist Backdoor and Agent Tesla Variant | |
CERT-EU | a year ago | Hacker Group Disguised as Marketing Company to Attack Enterprise Targets | |
CERT-EU | a year ago | Hacker Group Disguised as Marketing Company to Attack Enterprise Targets | IT Security News | |
CERT-EU | a year ago | Russia’s 'Turla' Group – A Formidable Cyberespionage Adversary | |
CERT-EU | a year ago | Iran's APT34 Hits UAE With Supply Chain Attack | |
CERT-EU | a year ago | Iranian Company Cloudzy Accused of Aiding Cybercriminals and Nation-State Hackers |