⚠️ Region Alert: UAE/Middle East
The U.S. Federal Bureau of Investigation (FBI) has issued a flash alert warning that Iranian hackers linked to the Ministry of Intelligence and Security (MOIS) are utilizing Telegram as command-and-control (C2) infrastructure. These threat actors target journalists, dissidents, and oppositional groups globally using social engineering to deploy Windows malware designed for data exfiltration and screenshot capture.
The activity is attributed to the Handala and Homeland Justice threat groups, who have been linked to high-profile incidents such as the recent cyberattack on medical giant Stryker. This alert follows the FBI's seizure of several domains used for leaking stolen data and comes amid broader warnings regarding Russian intelligence-linked phishing campaigns targeting encrypted messaging apps like Signal and WhatsApp.
Top comments (0)