Novel backdoor used in Charming Kitten attacks

20 February 2024

Novel backdoor used in Charming Kitten attacks Attacks involving the new BASICSTAR backdoor have been deployed by Iranian advanced persistent threat operation Charming Kitten, also known as Charming Cypress, Mint Sandstorm, APT35, TA453, and Yellow Garuda, against Middle East policy experts between September and October last year, according to The Hacker News. Charming Kitten leveraged hacked email accounts to impersonate the Rasanah International Institute for Iranian Studies in phishing intrusions that lured targets into joining a fake webinar and facilitated the download of the BASICSTAR malware, which enabled system data exfiltration and remote command execution, a Volexity report showed.

Source: SC Magazine

Date:

20 February 2024

Categorie(s):

NEWS

Tag(s):

Charming Kitten, Data Security, IT, News, Novel

Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024
Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024
Smoke and (screen) mirrors: A strange signed backdoor3 May 2024
Kaspersky accused of helping Russia develop military drone systems3 May 2024