Common Information
| Type | Value |
|---|---|
| Value |
APT34 - G0057 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | APT34 is an Iranian cyber espionage group that has been active since at least 2014. The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. FireEye assesses that the group works on behalf of the Iranian government based on infrastructure details that contain references to Iran, use of Iranian infrastructure, and targeting that aligns with nation-state interests. APT34 loosely aligns with public reporting related to OilRig, but may not wholly align due to companies tracking threat groups in different ways. (Citation: FireEye APT34 Dec 2017) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2019-12-04 | 17 | Breaking the Rules: A Tough Outlook for Home Page Attacks (CVE-2017-11774) | Mandiant | ||
| Details | Website | 2019-09-18 | 17 | Tortoiseshell Group Targets IT Providers in Saudi Arabia in Probable Supply Chain Attacks | ||
| Details | Website | 2019-09-18 | 5 | New TortoiseShell Group Hacks 11 IT Providers to Reach Their Customers | ||
| Details | Website | 2019-08-29 | 233 | Definitive Dossier of Devilish Debug Details – Part One: PDB Paths and Malware | Mandiant | ||
| Details | Website | 2019-08-28 | 7 | Researchers Analyze Tools Used by 'Hexane' Attackers Against Industrial Firms | SecurityWeek.Com | ||
| Details | Website | 2019-08-27 | 5 | New Threat Group Found Targeting Critical Infrastructure Firms With Spear | ||
| Details | Website | 2019-08-27 | 31 | Cyber Threat Group LYCEUM Takes Center Stage in Middle East Campaign | ||
| Details | Website | 2019-08-22 | 292 | APT34: The Helix Kitten Cybercriminal Group Loves to Meow Middle Eastern and International Organizations | Blog | ||
| Details | Website | 2019-08-01 | 11 | APT trends report Q2 2019 | ||
| Details | Website | 2019-07-25 | 7 | APT34攻击工具泄露-腾讯云开发者社区-腾讯云 | ||
| Details | Website | 2019-07-18 | 35 | Hard Pass: Declining APT34’s Invite to Join Their Professional Network | Mandiant | ||
| Details | Website | 2019-07-04 | 96 | 全球高级持续性威胁 (APT) 2019年中报告 | ||
| Details | Website | 2019-06-20 | 66 | Waterbug: Espionage Group Rolls Out Brand-New Toolset in Attacks Against Governments | ||
| Details | Website | 2019-05-29 | 28 | Мутные воды: как хакеры из MuddyWater атаковали турецкого производителя военной электроники | ||
| Details | Website | 2019-05-13 | 267 | Operation TaskMasters: Кибершпионаж в эпоху цифровой экономики | ||
| Details | Website | 2019-05-08 | 1 | New leaks of Iranian cyber-espionage operations hit Telegram and the Dark Web | ||
| Details | Website | 2019-04-30 | 64 | Behind the Scenes with OilRig | ||
| Details | Website | 2019-04-19 | 2 | Hacking (Back) and Influence Operations | ||
| Details | Website | 2019-04-19 | 1 | 伊朗黑客组织APT34攻击工具泄露 惊现中国企业网站Webshell - 瑞星网 | ||
| Details | Website | 2019-04-18 | 1 | APT34 Hacking Tools Leak | ||
| Details | Website | 2019-04-17 | 320 | APT34 / OILRIG Leak, Quick Analysis | ||
| Details | Website | 2019-04-17 | 1 | Source code of Iranian cyber-espionage tools leaked on Telegram | ||
| Details | Website | 2019-01-30 | 4 | Iran Ups its Traditional Cyber Espionage Tradecraft | ||
| Details | Website | 2019-01-29 | 2 | APT39: An Iranian Cyber Espionage Group Focused on Personal Information | Mandiant | ||
| Details | Website | 2019-01-03 | 38 | 腾讯安全2018年高级持续性威胁(APT)研究报告 - FreeBuf网络安全行业门户 |