Latest coverage for APT35
APT35 is an Iranian state-linked threat group associated with cyber espionage, phishing, credential theft, and targeting of sensitive organizations.
Refine the feed
Search across headline titles and summaries.
Tag briefing
Background for this topic.
APT35 is a cyber espionage group linked to Iranian state interests, specializing in targeted attacks against government, academic, and media organizations mainly in the Middle East, Europe, and the U.S. They use spear-phishing emails, credential harvesting, and custom malware to gain long-term access to sensitive networks for intelligence collection and influence operations.
Security teams should focus on defending against APT35’s social engineering tactics and their use of zero-day vulnerabilities to evade detection. Key defenses include enforcing multi-factor authentication, monitoring for unusual login behavior, and promptly applying security patches. Sharing threat intelligence on APT35’s indicators of compromise helps organizations identify and mitigate their stealthy intrusions more effectively.
No headlines matched
Try clearing a filter, changing the search term, or browsing the most recent feed.