Common Information
| Type | Value |
|---|---|
| Value |
APT34 - G0057 |
| Category | Actor |
| Type | Mitre-Intrusion-Set |
| Misp Type | Cluster |
| Description | APT34 is an Iranian cyber espionage group that has been active since at least 2014. The group has targeted a variety of industries, including financial, government, energy, chemical, and telecommunications, and has largely focused its operations within the Middle East. FireEye assesses that the group works on behalf of the Iranian government based on infrastructure details that contain references to Iran, use of Iranian infrastructure, and targeting that aligns with nation-state interests. APT34 loosely aligns with public reporting related to OilRig, but may not wholly align due to companies tracking threat groups in different ways. (Citation: FireEye APT34 Dec 2017) |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2018-11-27 | 1 | Helix Kitten | Threat Actor Profile | CrowdStrike | ||
| Details | Website | 2018-10-15 | 115 | January – September 2018 Cyber Attack Statistics | ||
| Details | Website | 2018-09-14 | 6 | Tunneling Under the Sands | NETSCOUT | ||
| Details | Website | 2018-07-25 | 31 | OilRig Targets Technology Service Provider and Government Agency with QUADAGENT | ||
| Details | Website | 2018-01-29 | 21 | Threat Profile: Microsoft Equation Editor Backdoor | ||
| Details | Website | 2018-01-29 | 37 | “人面马”(APT34)组织对中东地区进行攻击的最新动向通报 | ||
| Details | Website | 2017-12-07 | 67 | New Targeted Attack in the Middle East by APT34, a Suspected Iranian Threat Group, Using CVE-2017-11882 Exploit | Mandiant | ||
| Details | Website | 2016-12-28 | 11 | d.uijn.nl - Shortcuts another neat phishing trick | ||
| Details | Website | 2016-05-22 | 11 | Targeted Attacks against Banks in the Middle East | Mandiant |