Summary: An Iranian advanced persistent threat (APT) group with links to Iran's military intelligence has been conducting spear-phishing attacks by impersonating a prominent journalist, targeting individuals involved in Middle Eastern affairs. The attacks, ongoing since November 2023, have targeted high-profile individuals in Belgium, France, Gaza, Israel, the UK, and the US. Microsoft warns that the hackers are skilled social engineers who use legitimate but compromised accounts to send phishing emails and establish trust before delivering malicious content. The hackers have been successful in tricking targets into downloading malicious files.
Hashtags: #IranianAPT #cybersecurity #spearphishing #socialengineering #malware #cyberattacks #Microsoft