Reportseverity: High2023-09-14
Peach Sandstorm password-spray campaign against defense industry
published by Microsoft Threat Intelligence
Actor
Iranian state-sponsored actor with strategic intelligence interest in the global energy supply chain. Long-running password-spray and credential-theft campaigns against aviation and defense industria…
Summary
Microsoft Threat Intelligence reported that Peach Sandstorm (APT33) had been running a sustained password-spray campaign against the defense industrial base, satellite operators, and pharmaceutical sectors throughout 2023, deploying the Tickler backdoor on successfully accessed accounts.
Tags
password-sprayirandefense