APT34 Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform https://gbhackers.com/tag/apt34/ GBhackers Offering Exclusive Cyber Security News Coverage, New Research papers & Technology Updates. Thu, 12 Sep 2024 12:49:32 +0000 en-US hourly 1 https://wordpress.org/?v=6.6.2 https://gbhackers.com/wp-content/uploads/2024/09/cropped-gbh-32x32.png APT34 Archives - GBHackers Security | #1 Globally Trusted Cyber Security News Platform https://gbhackers.com/tag/apt34/ 32 32 Threat Actors Using New Malware Toolkit That Involves IIS Backdoor, DNS Tunneling https://gbhackers.com/iis-backdoor-dns-tunneling/ https://gbhackers.com/iis-backdoor-dns-tunneling/#respond Thu, 12 Sep 2024 12:35:33 +0000 https://gbhackers.com/?p=111730 The Iranian threat actor APT34, also known as GreenBug, has recently launched a new campaign targeting Iraqi government entities by employing a custom toolset, including a novel IIS backdoor and DNS tunneling protocol.  The malware used in this campaign shares similarities with previously reported APT34 malware families, such as Karkoff, Saitama, and IIS Group 2.  […]

The post Threat Actors Using New Malware Toolkit That Involves IIS Backdoor, DNS Tunneling appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The post Threat Actors Using New Malware Toolkit That Involves IIS Backdoor, DNS Tunneling appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

]]> https://gbhackers.com/iis-backdoor-dns-tunneling/feed/ 0 APT34 Employs Weaponized Word Documents to Deploy New Malware Strain https://gbhackers.com/apt34-employs-weaponized-word-documents/ https://gbhackers.com/apt34-employs-weaponized-word-documents/#respond Mon, 02 Oct 2023 11:08:57 +0000 https://gbhackers.com/?p=74325 APT34 is a secretive cyberespionage group specializing in Middle East targets, known for gathering sensitive intelligence via spear phishing and advanced infiltration methods. The sophistication and comprehensive resources of the APT34 group pose a major regional and global cybersecurity threat.  They have conducted high-profile cyberattacks in the Middle East against diverse targets:- Cybersecurity researchers at […]

The post APT34 Employs Weaponized Word Documents to Deploy New Malware Strain appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The post APT34 Employs Weaponized Word Documents to Deploy New Malware Strain appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

]]> https://gbhackers.com/apt34-employs-weaponized-word-documents/feed/ 0 Hacker Group Disguised as Marketing Company to Attack Enterprise Targets https://gbhackers.com/hacker-group-disguised-as-marketing/ https://gbhackers.com/hacker-group-disguised-as-marketing/#respond Tue, 05 Sep 2023 11:16:09 +0000 https://gbhackers.com/?p=72939 In a recent development, NSFOCUS Security Labs has detected a fresh APT34 phishing attack.  During this operation, APT34, believed to originate from Iran and also known as OilRig or Helix Kitten, assumed the identity of a marketing services company named Ganjavi Global Marketing Services (GGMS).  They particularly targeted enterprises, employing a variant of the SideTwist […]

The post Hacker Group Disguised as Marketing Company to Attack Enterprise Targets appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

The post Hacker Group Disguised as Marketing Company to Attack Enterprise Targets appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

]]> https://gbhackers.com/hacker-group-disguised-as-marketing/feed/ 0