Lucene search
K

7 matches found

Wired Threat Level
Wired Threat Level
added 2024/08/28 3:19 p.m.13 views

Notorious Iranian Hackers Have Been Targeting the Space Industry With a New Backdoor

In addition to its long-standing password spraying attacks, Microsoft says Iran-backed hacker group Peach Sandstorm—or APT 33—has developed custom malware dubbed “Tickler.”...

7.4AI score
Exploits0
The Hacker News
The Hacker News
added 2024/02/29 3:21 p.m.47 views

New Silver SAML Attack Evades Golden SAML Defenses in Identity Systems

Cybersecurity researchers have disclosed a new attack technique called Silver SAML that can be successful even in cases where mitigations have been applied against Golden SAML attacks. Silver SAML "enables the exploitation of SAML to launch attacks from an identity provider like Entra ID against...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2023/12/22 5:34 a.m.75 views

Microsoft Warns of New 'FalseFont' Backdoor Targeting the Defense Sector

Organizations in the Defense Industrial Base DIB sector are in the crosshairs of an Iranian threat actor as part of a campaign designed to deliver a never-before-seen backdoor called FalseFont. The findings come from Microsoft, which is tracking the activity under its weather-themed moniker Peach...

9.8CVSS9.6AI score0.96515EPSS
Exploits17
HackRead
HackRead
added 2023/12/21 8:46 p.m.19 views

Iran’s Peach Sandstorm Deploy FalseFont Backdoor in Defense Sector

By Waqas Peach Sandstorm, also recognized as HOLMIUM, has recently focused on global Defense Industrial Base DIB targets. This is a post from HackRead.com Read the original post: Irans Peach Sandstorm Deploy FalseFont Backdoor in Defense Sector...

7.3AI score
Exploits0
The Hacker News
The Hacker News
added 2023/09/15 4:14 a.m.55 views

Iranian Nation-State Actors Employ Password Spray Attacks Targeting Multiple Sectors

Iranian nation-state actors have been conducting password spray attacks against thousands of organizations globally between February and July 2023, new findings from Microsoft reveal. The tech giant, which is tracking the activity under the name Peach Sandstorm formerly Holmium, said the adversar...

9.8CVSS7.4AI score0.99999EPSS
Exploits90
Microsoft Malware Protection
Microsoft Malware Protection
added 2023/09/14 4:30 p.m.56 views

Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets

Since February 2023, Microsoft has observed password spray activity against thousands of organizations carried out by an actor we track as Peach Sandstorm HOLMIUM. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and...

7.5CVSS8.1AI score0.99999EPSS
Exploits90
Microsoft Secure
Microsoft Secure
added 2023/09/14 4:30 p.m.299 views

Peach Sandstorm password spray campaigns enable intelligence collection at high-value targets

Since February 2023, Microsoft has observed password spray activity against thousands of organizations carried out by an actor we track as Peach Sandstorm HOLMIUM. Peach Sandstorm is an Iranian nation-state threat actor who has recently pursued organizations in the satellite, defense, and...

7.5CVSS10.3AI score0.99999EPSS
Exploits90
Rows per page
Query Builder