Iran's 'Peach Sandstorm' Cyberattackers Target Global Defense Network
The FalseFont backdoor allows operators to remotely access an infected system and launch additional files.
Coverage of cybersecurity incidents, policy, privacy, public services, advisories, and regional effects connected to Iran.
Search across headline titles and summaries.
Background for this topic.
Iran covers cybersecurity and information-security developments connected to Iran, including incidents, policy, privacy, advisories, research, and news affecting organizations, public services, and digital systems in the area.
For practitioners, the tag provides geographic context for developments involving Iran's organizations, services, partners, and users. Individual articles provide the specific technologies, threats, sectors, and operational implications relevant to each development.
The FalseFont backdoor allows operators to remotely access an infected system and launch additional files.
Seedworm, aka MuddyWater, drops PowerShell-based malware on victims using living-off-the-land techniques.
Israeli intelligence said a cyber unit of Hezbollah also was involved in the cyberattack.
Iranian officials blame a software issue for the "disruption" to gasoline pumps.