The Anomali Threat Research Team monitors the global cyberthreat landscape continually. Our experts focus on geographies of interest, provide around-the-clock intelligence on adversaries, and guidance on how to defend networks and people against cyberattacks.
Anomali has been monitoring the Middle East long before the current situation with Iran developed. For several years, we have been providing threat intelligence to customers and the greater security community impacted by threats from this region. For example, as early as 2018, our researchers provided detailed analysis, warnings, and guidance related to Shamoon wiper malware and an attack wave launched by Iran-aligned threat actors.
Situation Analysis
On Jan. 3, the United States confirmed that it eliminated Major General Qassem Suleimani. He was the head of Iran's Islamic Revolutionary Guard Corps (IRGC) and its Quds Force. Since then, multiple news sources and government agencies have reported that Iran and groups aligned with it may target the US with retaliatory physical and cyberattacks. Anomali customers have increased demand for information about the event and requests for guidance on how to defend effectively against related cyberthreats.
Anomali has been meeting these requests with intelligence that is helping them to address concerns. To further assist customers and the security community to detect and mitigate related threats, we updated our comprehensive Iran country profile. It provides a complete overview of all threats known to be backed by, affiliated with, or sympathetic towards Iran. It provides a comprehensive list of the known threat actors’ attack techniques, payloads, and IOCs.
The information was compiled by the Anomali Threat Research Team. It is based on our internal research, publicly available research from multiple sources, direct input from partners such a ..
Support the originator by clicking the read the rest link below.
