Threat Advisories

Iranian APT’s new data extraction tool Hyperscrape

August 26, 2022

Threat Level

Red

Actor Report

For a detailed threat advisory, download the pdf file here

Summary

Charming Kitten, an Iranian government-backed threat group, has been employing a new data extraction tool, HYPERSCAPE. It has been used to retrieve data from Microsoft Outlook, Yahoo, and Gmail accounts. The tool is still being actively developed, and the most recent sample is from 2020.

Input validation flaw in GitLab’s Community and Enterprise Software

DarkTortilla crypter is set to become a formidable threat