Iranian threat actors are reportedly continuing their campaign against the aerospace and defense industries in the Middle East by deploying backdoors such as TWOSTROKE and DEEPROOT. This ongoing activity has been tracked by Google-owned Mandiant and attributed to a threat group known as UNC1549, which is also referred to as Nimbus Manticore or Subtle Snail.
The operational focus on these sectors highlights the persistent risks of cyber threats originating from state-sponsored actors. These backdoors suggest significant intentions for espionage activities, reflecting a strategic interest in sensitive and critical industries. As these threats evolve, the need for heightened cybersecurity measures is becoming increasingly critical for the affected sectors.
👉 Pročitaj original: The Hacker News
