National Cyber Warfare Foundation (NCWF)

APT39
1 user ratings		2024-07-07 19:26:45
blscott

 - archive -- 

APT39

APT39 is an advanced persistent threat (APT) group that has been active since at least 2014 and is believed to be based in Iran. The groups primary targets are government agencies, military organizations, defense contractors, and individuals involved with the US-Iran conflict. APT39 uses a variety of tactics such as spear phishing emails, malware drops, and watering hole attacks to gain access to their target systems. The group has been linked to several high profile cyberattacks including the attack on the Saudi Arabian National Petroleum Company (SNPC) in 2017.

Techniques, tactics and practices: 

APT39 uses a variety of tactics such as spear phishing emails, malware drops, and watering hole attacks to gain access to their target systems. They also use social engineering techniques to gather information about potential targets before launching an attack. Additionally, they have been known to exploit vulnerabilities in software and operating systems to gain unauthorized access to networks.



Comments
new comment
Nobody has commented yet. Will you be the first?


Primary Names
03f13462-003c-4296-8784-bccea16710a9


a.k.a
Cadelle
Radio Serpens
Rana
G0087
TA454
COBALT HICKMAN
Chafer
ITG07
Remix Kitten
  




This link is from a restricted area of the forums.
Forum


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.