New Iran-Nexus Hacking Group Targets Israel Government and IT Sectors
Check Point researchers have identified a new cyber adversary targeting Israeli government and IT businesses, tracked as ‘Cavern Manticore’
Coverage of cybersecurity incidents, policy, privacy, public services, advisories, and regional effects connected to Iran.
Search across headline titles and summaries.
Background for this topic.
Iran covers cybersecurity and information-security developments connected to Iran, including incidents, policy, privacy, advisories, research, and news affecting organizations, public services, and digital systems in the area.
For practitioners, the tag provides geographic context for developments involving Iran's organizations, services, partners, and users. Individual articles provide the specific technologies, threats, sectors, and operational implications relevant to each development.
Weekly headline count for the current query.
Check Point researchers have identified a new cyber adversary targeting Israeli government and IT businesses, tracked as ‘Cavern Manticore’
An NCC Group report warns state-backed hackers are attempting to hide activity by posing as ransomware groups and deploying commercially available malware
ESET’s 2026 APT Activity Report suggests China-backed APTs are using instability in the region to target victims, as well as continuing activity against organizations around the globe
Iran's Nimbus Manticore pushes AI-built MiniFast backdoor via phishing and SEO poisoning
Rapid7 reveals an Iranian false flag operation masquerading as a Chaos ransomware attack
The “fast16” malware may have been used to target Iran’s nuclear program prior to Stuxnet
CISA has revealed Iranian attacks causing disruption and financial loss at US critical infrastructure firms
Halcyon and Beazley Security track the return of Iranian ransomware group Pay2Key
The FBI has warned that Iranian hacking group Handala has been targeting opponents of the regime since 2023
The pro-Iran Handala group claims to have wiped 200,000 systems in destructive wiper malware attack on US firm Stryker
A bank, an airport, a non-profit and the Israeli branch of a US software company were among the targets of this new MuddyWater campaign
Increased attempts to compromise surveillance cameras linked to Iran during Middle East conflict
Espionage campaign exploits Israel-Iran conflict, distributing a trojanized Red Alert app via SMS
Ariomex database reveals potential sanctions evasion and capital transfers tied to Iranian actors
Zscaler ThreatLabz assessed with medium to high confidence that an Iranian adversary targeted Iraq’s Ministry of Foreign Affairs in a new cyber-attack
John Hultquist suggests “aggressive” Iranian cyber attackers will target the US and its Gulf allies with plausibly deniable ransomware attacks, hacktivist campaigns and more
The RedKitten campaign distributes lures designed to target people seeking information about missing persons or political dissidents in Iran
A previously unknown cyber actor UNK_SmudgedSerpent has been observed targeting academics with phishing and malware, merging techniques from Iranian groups
Group-IB has uncovered a phishing campaign by Iran-linked MuddyWater, exploiting compromised emails for foreign intelligence
Nimbus Manticore intensified European cyber-espionage, targeting aerospace, telecom, defense sectors