U.S. and Israeli organizations are at increased risk of cyber-attacks from Iranian state-sponsored and affiliated threat actors due to recent activity. The agencies advise enhanced vigilance and specific cybersecurity measures to defend against vulnerabilities and exploitation tactics. #APT35 #IranianThreatActors
Keypoints
- Iranian cyber actors exploit unpatched software and weak passwords to target organizations.
- Current threats include DDoS, ransomware, and spear-phishing campaigns, particularly targeting defense and research entities.
- Attack methods often involve reconnaissance tools like Shodan and lateral movement within networks using remote access tools.
- Mitigation strategies emphasize strong passwords, MFA, patch management, and network segmentation.
- Organizations should review their attack surface using tools like Nmap and align defenses with the MITRE ATT&CK framework.
Read More: https://thehackernews.com/2025/06/us-agencies-warn-of-rising-iranian.html