"Researchers at Symantec and Carbon Black discovered the attackers had installed a hidden malicious program, known as backdoors, allowing them to secretly regain access to compromised systems. Investigators said the hackers appeared to be spying, stealing sensitive data and positioning themselves for potential future attacks."
"'These attacks are about sending a message rather than stealing information, which means any organization in the targeted country could be in the firing line,' the researchers warned. 'Because of the heated tension in the region and ongoing attacks, it is likely Iran and its allies may also initiate cyber operations to further target their adversaries.'"
"The cyber activity comes as the US and Israel launched a major military offensive against Iran that killed the country's supreme leader and several senior officials. The activity appears to have begun in early February and has continued in recent days, even after US and Israeli military strikes on Iran."
Cybersecurity researchers at Symantec and Carbon Black discovered that the Iran-linked Advanced Persistent Threat group Seedworm has compromised multiple American organizations, including financial institutions, airports, and defense industry software suppliers. The attackers installed hidden malicious programs called backdoors, enabling covert system access. The campaign began in early February and continued after US-Israeli military strikes on Iran. Investigators determined the hackers were conducting espionage, stealing sensitive data, and positioning for future attacks. Non-profit organizations in the US and Canada were also affected. Researchers warned that these operations appear designed to send strategic messages rather than solely extract information, suggesting any organization could become a target.
Read at Mail Online
Unable to calculate read time
Collection
[
|
...
]