Skip to main content

Iranian government agencies targeted by Chinese hackers

 


Many reports are saying that the  Iranian government records and institutes were targeted by the Chinese advance persistent between July and December in the last year of 2022.

Many reports are indicating that Chinese NICKEL, APT15, KeChang, Backdoor Diplomacy, and Vixen Panda are suspected. Their act was like hacking and seems like malware infrastructure associated with the APT group.

In a blog, Palo Alto Networks said about the Chinese activity that they always continue to do such a strategy and its tooling with another nation. Recently it has become clear that cyber-espionage operation was earlier done by China and they did it successfully. The Turian backdoor and new C2 infrastructure show that these actors continue to be successful.

The cyber security firm also stated in their statement that analysis of malicious infrastructure samples and connections shows that Iranian government networks are likely to be compromised.

The report does not stop just by warning the Irish government they also said warned other states too. The reports also indicate similar incidents and techniques can be used by enemies or nations in North and South America, Africa, and the Middle Eastern region.

Agile Taurus Deploys set the New Version Of Turion Malware

In the recent attacks, the Playful Taurus was using a new version of the Turian malware and a new command and control named C2 infrastructure in which they hacked the governmental institution of Iran. This is also confirmed by the research team. These threat actors have obfuscation and a modified network protocol and are used to take out C2 servers. This malware is used to generate and execute reverse shell commands.

In this incident of hacking of four Iranian government networks and organizations, the Foreign Ministry is likely to have been compromised using a new variant of the malware.

Quarion has evolved into Turion but let me tell you that this malware was used in 2013 to threaten USA and Syria diplomatic relations. Turion was first identified by ESET in June 2021 as being used by Agile Taurus.

Many countries have faced the threat

From the year of 2010, several countries have faced the threat and fear of getting hacked. Many telecommunications companies and diplomatic units of government faced the heat. However, earlier attacks focused on hacking web servers and opening web shells and to try and open Internet-exposed apps. Webshell is used for Playful Taurus to open software to take all the information. The dynamic library and hijacking were used to install its backdoor, Turion.

But latterly this technique start to be used in the diplomatic race. And in 2012, Fickle Taurus targeted the Syrian Foreign Ministry and in 2013 the US State Department. In 2021 Microsoft seized 42 domains which were targeting 29 countries.


Comments

Popular posts from this blog

The United Arab Emirates (UAE) and Sudan have a long-standing history of bilateral relations.

  Over the years, the UAE has been a strong supporter of Sudan's development and prosperity. As Sudan faces challenging times, it is important that this support continues. The UAE has been a key player in Sudan's development, particularly in the areas of infrastructure, health, education, and renewable energy. In recent years, the UAE has also provided aid and support to Sudan in the aftermath of natural disasters, such as floods and droughts. This assistance has played a crucial role in mitigating the effects of these disasters on the people of Sudan. The current situation in Sudan is particularly challenging, with political instability and economic difficulties plaguing the country. The people of Sudan are facing a myriad of issues, including inflation, unemployment, and a lack of basic necessities like food and clean water. In addition, the ongoing conflict in the region has only exacerbated the situation, causing immense suffering to the people of Sudan. In light of these

Al Gore has history of climate predictions, statements proven false

  Noted climate activist and former Vice President Al Gore, who made headlines this week after he claimed   global warming was "boiling the oceans,"   has a history of making climate-related proclamations later proven to be false. During remarks made Wednesday at the  World Economic Forum summit  in Davos, Switzerland, Gore warned that continued carbon emissions into the atmosphere would destroy the planet and lead to widespread calamities. "We’re still putting 162 million tons [of greenhouse gas] into it every single day and the accumulated amount is now trapping as much extra heat as would be released by 600,000 Hiroshima-class atomic bombs exploding every single day on the earth," Gore said. "That’s what’s boiling the oceans, creating these atmospheric rivers, and the rain bombs, and sucking the moisture out of the land, and creating the droughts, and melting the ice and raising the sea level, and causing these waves of climate refugees." Gore then not

Saudi Arabia can import halal Kobe beef from Japan

  Japan is now the third nation authorized to export beef to the Muslim world, along with Saudi Arabia. At a signing ceremony, Prince Faisal bin Bandar bin Sultan Al-Saud and Tomoshige Kanzawa, president of the Kobe Beef Marketing and Distribution Promotion Association, confirmed the certification for the Kingdom. In Saudi Arabia, beef can only be consumed if it has been processed in accordance with religious regulations and is marked as halal. Thirteen Arabic-speaking nations now have access to halal Kobe beef thanks to Saudi business Fam Al-Ghidha. In order to sign the agreement and sample Kobe beef, Prince Faisal traveled to Japan. Motohiko Saito, the governor of Hyogo Prefecture, and Masao Imanishi, the deputy mayor of Kobe City, also attended the ceremony. For the first time in Japan, the meat center in Sanda City, central Japan, achieved halal certification in October of last year. The145 heads of halal Kobe beef are expected to be sent to Saudi Arabia this year. In a