Common Information
| Type | Value |
|---|---|
| Value |
APT34 - G0057 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | APT34 is an Iranian cyber espionage group that has been active since at least 2014. The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. FireEye assesses that the group works on behalf of the Iranian government based on infrastructure details that contain references to Iran, use of Iranian infrastructure, and targeting that aligns with nation-state interests. APT34 loosely aligns with public reporting related to OilRig, but may not wholly align due to companies tracking threat groups in different ways. (Citation: FireEye APT34 Dec 2017) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-09-12 | 1 | Trending Cybersecurity news headlines on Google for today - Cybersecurity Insiders | ||
| Details | Website | 2024-09-12 | 1 | Iranian APT Group OilRig Launches Advanced Malware Attack on Iraqi Government | ||
| Details | Website | 2024-09-12 | 1 | Iran-linked hackers target Iraqi government in new campaign | ||
| Details | Website | 2024-09-11 | 17 | Targeted Iranian Attacks Against Iraqi Government Infrastructure | ||
| Details | Website | 2024-09-11 | 17 | Targeted Iranian Attacks Against Iraqi Government Infrastructure - Check Point Research | ||
| Details | Website | 2024-09-11 | 2 | The Unraveling of an Iranian Cyber Attack Against the Iraqi Government - Check Point Blog | ||
| Details | Website | 2024-09-02 | 43 | Creating a DNS C2 server and agent | ||
| Details | Website | 2024-07-29 | 3 | Iranian Hacker Group APT34 Use New ‘Tonedeaf’ Malware over LinkedIn in Latest Phishing Campaign | ||
| Details | Website | 2024-06-20 | 29 | Mandiant称伊朗在中东电信公司和政府机构中植入后门 | ||
| Details | Website | 2024-06-20 | 4 | 网安原创文章推荐【2024/9/20】 | ||
| Details | Website | 2024-03-25 | 2 | APT39 | Iranian Threat Group Focused on Personal Information | Google Cloud Blog | ||
| Details | Website | 2024-02-08 | 6 | Vertical Target Series: Technology, Telecommunications and Academic and Educational Services | ||
| Details | Website | 2023-12-27 | 13 | Risky Biz News: Barracuda discloses ESG zero-day on Xmas Eve | ||
| Details | Website | 2023-11-06 | 106 | 安全事件周报 2023-10-30 第44周 - 360CERT | ||
| Details | Website | 2023-11-02 | 2 | 'Scarred Manticore' Unleashes the Most Advanced Iranian Cyber Espionage Yet | ||
| Details | Website | 2023-11-02 | 3 | Iranian Cyber Spies Use ‘LionTail’ Malware in Latest Attacks | ||
| Details | Website | 2023-10-31 | 37 | From Albania to the Middle East: The Scarred Manticore is Listening - Check Point Research | ||
| Details | Website | 2023-10-30 | 91 | 安全事件周报 2023-10-23 第43周 - 360CERT | ||
| Details | Website | 2023-10-30 | 108 | 安全事件周报 2023-10-30 第44周 | ||
| Details | Website | 2023-10-27 | 7 | What is Advanced Persistent Threat? Uncover the Hidden Dangers! | ||
| Details | Website | 2023-10-27 | 43 | 每周高级威胁情报解读(2023.10.27~11.02) | ||
| Details | Website | 2023-10-25 | 14 | Netskope Threat Coverage: Menorah | ||
| Details | Website | 2023-10-23 | 6 | 23rd October – Threat Intelligence Report - Check Point Research | ||
| Details | Website | 2023-10-23 | 93 | 安全事件周报 2023-10-23 第43周 | ||
| Details | Website | 2023-10-20 | 7 | Rewterz Threat Alert – Middle East Government Network Targeted by Iranian APT OilRig in 8-Month Campaign – Active IOCs |