Ferocious Kitten

Ferocious Kitten - Ferocious Kitten is a threat group that has primarily targeted Persian-speaking individuals in Iran since at least 2015. ...
2 years ago Attack.mitre.org Ferocious Kitten

Iran-Linked Imperial Kitten Cyber Group Targeting Middle East's Tech Sectors - A group with links to Iran targeted transportation, logistics, and technology sectors in the Middle East, including Israel, in October 2023 amid a surge in Iranian cyber activity since the onset of the Israel-Hamas war. The attacks have been ...
2 years ago Thehackernews.com

Fox Kitten - Fox Kitten is threat actor with a suspected nexus to the Iranian government that has been active since at least 2017 against entities in the Middle East, North Africa, Europe, Australia, and North America. Fox Kitten has targeted multiple industrial ...
2 years ago Attack.mitre.org Fox Kitten

Iranian ransomware group offers bigger payouts for attacks on Israel, US | The Record from Recorded Future News - Researchers believe Pay2Key.I2P collaborates with operators of the Mimic ransomware, which uses code from the defunct Conti gang — whose tools were leaked after it publicly supported Russia’s invasion of Ukraine. An Iranian ransomware gang has ...
5 months ago Therecord.media Fox Kitten

Ransomware's appetite for US healthcare sees known attacks double in a year - Following the February 21 attack on Change Healthcare, scores of people in the US have been living with the brutal, real-world effects of ransomware. It has also created skyrocketing pharmacy bills, pushed some healthcare providers to the edge of ...
1 year ago Malwarebytes.com Rocke LockBit

CVE-2025-6365 - A vulnerability was found in HobbesOSR Kitten up to c4f8b7c3158983d1020af432be1b417b28686736 and classified as critical. Affected by this issue is the function set_pte_at in the library /include/arch-arm64/pgtable.h. The manipulation leads to ...
6 months ago

Microsoft: Hackers target defense firms with new FalseFont malware - Microsoft says the APT33 Iranian cyber-espionage group is using recently discovered FalseFont backdoor malware to attack defense contractors worldwide. The DIB sector targeted in these attacks comprises over 100,000 defense companies and ...
2 years ago Bleepingcomputer.com APT3 APT33

Iranian Hackers Targeting US Defense Industrial Base Entities With New Backdoor - Microsoft is raising the alarm on new Iranian state-sponsored attacks targeting employees at US defense industrial base organizations. The tech giant attributes the attacks to Peach Sandstorm, the name it uses to denominate the activity cluster also ...
2 years ago Securityweek.com APT3 APT33

IRGC-Linked APT35 Structure and Tools Revealed - The IRGC-linked APT35, also known as Charming Kitten, has been extensively analyzed revealing its sophisticated structure and diverse toolkit. This Iranian threat actor group is known for its cyber espionage campaigns targeting government, military, ...
2 months ago Cybersecuritynews.com APT35 Charming Kitten

Iranian Hackers Targeting US Defense Industrial Base Entities With New Backdoor - Microsoft is raising the alarm on new Iranian state-sponsored attacks targeting employees at US defense industrial base organizations. The tech giant attributes the attacks to Peach Sandstorm, the name it uses to denominate the activity cluster also ...
2 years ago Packetstormsecurity.com APT3 APT33

Microsoft: Iranian hackers target researchers with new MediaPl malware - Microsoft says that a group of Iranian-backed state hackers are targeting high-profile employees of research organizations and universities across Europe and the United States in spearphishing attacks pushing new backdoor malware. The attackers, a ...
1 year ago Bleepingcomputer.com APT3 APT33

Payoneer accounts in Argentina hacked in 2FA bypass attacks - Numerous Payoneer users in Argentina report waking up to find that their 2FA-protected accounts were hacked and funds stolen after receiving SMS OTP codes while they were sleeping. Payoneer is a financial services platform providing online money ...
1 year ago Bleepingcomputer.com

Cracked macOS apps drain wallets using scripts fetched from DNS records - Hackers are using a stealthy method to deliver to macOS users information-stealing malware through DNS records that hide malicious scripts. The campaign appears directed at users of macOS Ventura and later and relies on cracked applications ...
1 year ago Bleepingcomputer.com

Detecting Cyber Attack Patterns by Analyzing Threats Actors Infrastructure - The identification of cyber attack patterns through infrastructure analysis has emerged as a crucial methodology in modern threat intelligence. By examining the digital footprints left by threat actors, security analysts can now reconstruct attack ...
9 months ago Cybersecuritynews.com

Iranian Threat Actors Leveraging AI-Crafted Emails to Target Cybersecurity Researchers and Academics - The campaign, primarily attributed to APT35 (also known as Charming Kitten and Magic Hound), represents a marked evolution in Iranian cyber warfare tactics, moving beyond traditional surveillance operations to more sophisticated, high-trust social ...
5 months ago Cybersecuritynews.com Magic Hound APT3