Show in Graph
Common Information
Type Value
Value 
APT34 - G0057
Category Actor
Type Mitre-Intrusion-Set
Misp Type Cluster
Description APT34 is an Iranian cyber espionage group that has been active since at least 2014. The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. FireEye assesses that the group works on behalf of the Iranian government based on infrastructure details that contain references to Iran, use of Iranian infrastructure, and targeting that aligns with nation-state interests. APT34 loosely aligns with public reporting related to OilRig, but may not wholly align due to companies tracking threat groups in different ways. (Citation: FireEye APT34 Dec 2017)
Details Published Attributes CTI Title
Details Website 2024-11-13 24 Lessons from a Honeypot with US Citizens’ Data
Details Website 2024-11-10 1 Unmasking APT34: How This State-Sponsored Threat Group Breaches Networks and What You Can Do to…
Details Website 2024-10-31 2 The Silent Threat: Inside Iranian Cyber Attacks on Critical Infrastructure
Details Website 2024-10-30 2 落实安全左移迫在眉睫 | 伊朗APT34组织针对阿联酋及海湾关键基础设施发动攻击 - 安全牛
Details Website 2024-10-29 1 Introduction: APT34, also referred to as “OilRig,” is a highly sophisticated and persistent threat…
Details Website 2024-10-22 3 OilRig Cyber Attacks: APT34 Targets Aerospace Sector with Exploited Vulnerabilities and Data Theft - CloudSEK News
Details Website 2024-10-20 2 Security Affairs newsletter Round 494 by Pierluigi Paganini – INTERNATIONAL EDITION
Details Website 2024-10-18 44 Weekly Intelligence Report - 18 Oct 2024 | #ransomware | #cybercrime | National Cyber Security Consulting
Details Website 2024-10-18 1 Today’s Top Cyber Intelligence Highlights — Oct 18, 2024
Details Website 2024-10-18 29 IT Vulnerability Weekly Report: Cyble Urges Fixes For Fortinet, Palo Alto & More
Details Website 2024-10-18 5 The Good, the Bad and the Ugly in Cybersecurity - Week 42
Details Website 2024-10-17 2 SolarWinds Web Help Deskの欠陥が攻撃に悪用される - PRSOL:CC
Details Website 2024-10-16 4 CISA Issues Urgent Advisory On Vulnerabilities Affecting Multiple Products - Cyble
Details Website 2024-10-16 2 Earth Simnavaz 利用 Windows 内核漏洞 CVE-2024-30088 攻击关键基础设施-安全客 - 安全资讯平台
Details Website 2024-10-16 13 Log4j威胁阴影未散,超13%运行实例仍存安全隐患; APT34最新攻击手法揭秘:瞄准微软Exchange服务器 | 牛览 - 安全牛
Details Website 2024-10-16 6 SolarWinds Web Help Desk flaw is now exploited in attacks
Details Website 2024-10-15 2 Iran-linked hackers increasingly spy on governments in Gulf region, researchers say | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
Details Website 2024-10-14 3 OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf - RedPacket Security
Details Website 2024-10-14 4 OilRig Hackers Exploiting Microsoft Exchange Server To Steal Login Details | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
Details Website 2024-10-14 2 Cyber Briefing: 2024.10.14
Details Website 2024-10-14 2 Earth Simnavaz (aka APT34) Attack Detection: Iranian Hackers Leverage Windows Kernel Vulnerability to Target UAE and Gulf Region - SOC Prime
Details Website 2024-10-14 2 Understanding OilRig’s Exploitation of Privilege Escalation Flaws
Details Website 2024-10-14 20 Earth Simnavaz (APT34) APT IOCs - SEC-1275-1
Details Website 2024-10-14 3 OilRig 利用已修复的 Windows 内核权限提升漏洞(CVE-2024-30088)进行攻击-安全客 - 安全资讯平台
Details Website 2024-10-13 3 OilRig Exploits Windows Kernel Flaw in Espionage Campaign Targeting UAE and Gulf