Iranian Hackers Are Targeting Research Organizations, Universities in Europe, US
Swiss government targeted by NoName, PixieFail UEFI firmware flaws impact boot process, Feds warn of Chinese drone risks, Thousands of companies shovel data to Facebook, much more
Note bene: While Metacurity explores switching to alternative newsletter platforms, please know that whatever we do, you can always reach Metacurity at https://metacurity.com.
Microsoft says that a group of Iranian-backed state hackers, Mint Sandstorm (PHOSPHORUS), a subgroup of the notorious APT35 Iranian cyberespionage group (also known as Charming Kitten) linked to the Islamic Revolutionary Guard Corps (IRGC), are targeting high-profile employees of research organizations and universities across Europe and the United States in spearphishing attacks using a new backdoor malware called MediaPl.
The attackers sent custom-tailored and difficult-to-detect phishing emails via previously compromised accounts. This APT35 subset focuses on attacking and stealing sensitive data from the breached systems of high-value targets. It is known for previously targeting researchers, professors, journali…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.