PROBABLYPWNED
Home/Tag/Iran

Iran

22 articles tagged with "Iran"

Iran-Linked Handala Claims Breach of California Water Utility
Threat Intelligence4 min read

Iran-Linked Handala Claims Breach of California Water Utility

Handala threat group claims to have compromised California Water Service, publishing 5GB of customer data. Security experts assess the group reached billing systems and GPS servers but likely cannot disrupt water operations.

Threat Intel DeskJun 14, 2026
FBI, CISA Warn Iran Is Attacking US Water and Energy PLCs
Threat Intelligence5 min read

FBI, CISA Warn Iran Is Attacking US Water and Energy PLCs

Joint advisory AA26-097A details Iranian APT targeting Rockwell Allen-Bradley controllers across critical infrastructure. Attacks caused operational disruptions since March 2026.

Threat Intel DeskApr 8, 2026
Iran-Linked Hackers Spray 300+ Israeli M365 Tenants
Threat Intelligence4 min read

Iran-Linked Hackers Spray 300+ Israeli M365 Tenants

Check Point tracks an Iran-nexus campaign targeting Microsoft 365 accounts across 300+ Israeli organizations and 25+ UAE entities. Attackers use Tor exit nodes and Israeli VPNs to evade detection.

Threat Intel DeskApr 7, 2026
CanisterWorm Adds Iran-Targeting Kubernetes Wiper
Malware4 min read

CanisterWorm Adds Iran-Targeting Kubernetes Wiper

TeamPCP's supply chain attack expands with a Kubernetes wiper that detects Iranian systems via timezone and locale, wiping clusters while backdooring everyone else.

Malware DeskMar 23, 2026
Iranian APT Deploys Fake RedAlert App to Surveil Israeli Users
Threat Intelligence3 min read

Iranian APT Deploys Fake RedAlert App to Surveil Israeli Users

Unit 42 uncovers phishing campaign distributing trojanized Israeli civil defense app. Malicious APK harvests location data, contacts, and messages from Android devices amid regional tensions.

Threat Intel DeskMar 23, 2026
MuddyWater Deploys GhostFetch and Telegram-Based Backdoors
Threat Intelligence3 min read

MuddyWater Deploys GhostFetch and Telegram-Based Backdoors

Iranian APT MuddyWater launches Operation Olalampo against MENA organizations, deploying four new malware families including GhostFetch and CHAR, a Rust backdoor controlled via Telegram.

Threat Intel DeskFeb 23, 2026
RedKitten Malware Targets Iranian Protest Documenters
Threat Intelligence3 min read

RedKitten Malware Targets Iranian Protest Documenters

French researchers uncover SloppyMIO, an AI-assisted malware campaign using fabricated victim lists to target individuals documenting human rights abuses during Iranian protests.

Threat Intel DeskJan 31, 2026