Turla VS Oilrig: when APTs clash
Russian APT uses then abuses Iranian APT tools and infrastructure Turla background Turla (Venomous Bear, KRYPTON, WATERBUG) is a Russian APT operating since approximately 2005 who use spear phishing and watering hole campaigns and develop tools and malware. The…
MICROSOFT are angry at CHARMING KITTEN……. again
A blog by Microsoft’s vice president of security and trust says that the Microsoft Threat Intelligence Center observed the iranian cyber group CHARMING KITTEN (Phosphorous) try to access customer accounts. Microsoft reported that the activity targeted accounts that belonged to:…
Are you safe from the new zero-day Android exploit?
Google has identified another new zero-day exploit in Android devices (Apple users can skip to a different article!). This is the last in a series of Android exploits called CVE-2019-2215. This is not a warning by Google, this exploit is…
How to do a bank robbery without the guns
In September a iranian cloud service provider named ArvanCloud reported that a number of digital currency websites experienced a DDOS attack and the three victim named were arzjoo.com and excoino.com and avalpardakht.com. The attack on Arzjoo was the greatest and…
Microsoft legal action against CHARMING KITTEN after more malicious domains identified
It is known that in the past five years Microsoft teams were closely following CHARMING KITTEN, known as also APT35 and Ajax Security Team and Phosphorus, because the hacking group attack the computer systems of business and governments in order…
Whatsapp – updates and data sharing
Whatsapp reports that important updates are to come soon. Recently the company have made updates for android that allow a user to make group calls and another to make it more easy for a user to identify the person they…
Latest news on US cyberattack on Iran
Media across the globe have reported the US cyberattack on Iran. The cyberattack was clearly an immediate reaction to recent events, particularly the alleged attacks on the oil tankers and the US drone that was shot down, but it must…
Installing updates is CRITICAL -The whatsapp buffer overflow vulnerability gives an example
A new whatsapp vulnerability allows attackers to remotely install spyware on handsets. The attack inserts malicious code into data packets that are sent during the calling feature of the app. This causes the whatsapp internal buffer to overflow and…
CORRUPT KITTEN Exposed
Iran Cyber News Agency was previously able to reveal the discovery of new malware targeting Iranian citizens. In the interests of protecting innocent citizens from further attacks we can reveal more of the technical specifications of the malware and how…
Malware Made for Iranians: New Malware ‘Corrupt Kitten’ Used to Spy on Iranians
In this time when so many enemies are waging soft war against innocent Iranians using many excuses, Iranians expect the government of the Islamic Republic to protect them against this. An investigation by Iranian Cyber News Agency in collaboration with…