New Charming Kitten attacks involve POWERSTAR backdoor

4 July 2023

Iranian state-sponsored threat operation Charming Kitten, also known as APT35, Mint Sandstorm, Cobalt Illusion, and Yellow Garuda, has launched a new wave of spear-phishing attacks deploying the POWERSTAR backdoor since May, according to The Hacker News. Additional measures to prevent detection have been employed by Charming Kitten in the latest POWERSTAR attacks, which involved the use of an LNK file within a password-protected RAR file to facilitate backdoor download from Backblaze, a report from Volexity revealed.

Source: SC Magazine

Date:

4 July 2023

Categorie(s):

NEWS

Tag(s):

Charming Kitten, IT, New, News

With its new iPad, Apple’s Empire strikes back6 May 2024
Malware campaign attempts abuse of defender binaries6 May 2024
Microsoft unveils new security features for SOC teams to combat insider threats6 May 2024
BigID launches new hybrid scanning technology for enhance cloud data management6 May 2024
At RSA, Cisco launches bolsters in Security Cloud, built on Hypershield and Splunk6 May 2024