Masn

Threat Actor updated 5 months ago (2024-05-05T11:17:33.313Z)
Download STIX
Preview STIX
MASN, also known as Mehrsam Andisheh Saz Nik, is a threat actor identified as being associated with several Iranian Advanced Persistent Threat (APT) groups, including Tortoiseshell. This entity has been linked to a multi-year cyber campaign that targeted over a dozen U.S. companies and government entities, notably the Department of the Treasury. The group's operations are characterized by sophisticated cyberattacks aimed at compromising critical infrastructure, extracting sensitive information, and disrupting operations. MASN is among the numerous unconventional warfare tools employed by state-sponsored entities to advance their geopolitical objectives. Alireza Shafie Nasab and Reza Kazemifar Rahman are two notable figures associated with MASN. Both were involved in executing the extensive cyber campaign against U.S. targets while working for MASN or its predecessor, Mahak Rayan Afzar. Their affiliation with the Iranian Islamic Revolutionary Guard Corps Cyber Electronic Command (IRGC-CEC) further underscores the state-backed nature of these cyber operations. These individuals represent a broader network of actors who leverage their technical expertise to engage in cyber warfare on behalf of state-sponsored entities. In response to these cyber threats, the U.S. Office of Foreign Assets Control (OFAC) has sanctioned MASN and another front company, Dadeh Afzar Arman (DAA), both of which are linked to the IRGC-CEC. These sanctions represent an effort to disrupt the financial resources fueling these cyber campaigns, aiming to deter future attacks and hold accountable those responsible. As the cybersecurity landscape continues to evolve, it is crucial to remain vigilant against such threat actors and develop robust defense mechanisms to protect national security interests.
Description last updated: 2024-05-05T10:25:05.133Z
What's your take? (Question 1 of 0)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Aliases We are not currently tracking any aliases
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Associated Threat Actors
To see the evidence that has resulted in these threatActor associations, create a free account
Alias DescriptionAssociation TypeVotes
The Alireza Shafie Nasab Threat Actor is associated with Masn. Alireza Shafie Nasab, an Iranian national, along with his associates Hossein Harooni, Reza Kazemifar, and Komeil Baradaran Salmani, have been identified as threat actors involved in a significant cyber-enabled campaign. This group has targeted both U.S. government and private entities, including theUnspecified
2
Source Document References
Information about the Masn Threat Actor was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
InfoSecurity-magazine
6 months ago
Securityaffairs
6 months ago