Iranian Group TA453 Launches Phishing Attacks with BlackSmith
TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith
APT35 is an Iranian state-linked threat group associated with cyber espionage, phishing, credential theft, and targeting of sensitive organizations.
Search across headline titles and summaries.
Background for this topic.
APT35 is a cyber espionage group linked to Iranian state interests, specializing in targeted attacks against government, academic, and media organizations mainly in the Middle East, Europe, and the U.S. They use spear-phishing emails, credential harvesting, and custom malware to gain long-term access to sensitive networks for intelligence collection and influence operations.
Security teams should focus on defending against APT35’s social engineering tactics and their use of zero-day vulnerabilities to evade detection. Key defenses include enforcing multi-factor authentication, monitoring for unusual login behavior, and promptly applying security patches. Sharing threat intelligence on APT35’s indicators of compromise helps organizations identify and mitigate their stealthy intrusions more effectively.
Weekly headline count for the current query.
TA453, also known as Charming Kitten, launched a targeted phishing attack using PowerShell malware BlackSmith
Volexity said the updated malware uses IPFS, public cloud hosting for decryption and configuration