The Iran-linked APT appears to be in a state of continuous tool development, analogous to the DevOps efforts seen in the legitimate software world.
Spreading via fake Android apps, the malware lifts a range of sensitive information from victims’ devices.
The Iran-linked group is using a variant of the data-exfiltration OopsIE trojan to attack a Mideast government entity.
The news comes as President Trump tweets opposition to take-down efforts by the tech giants.
The DNC thwarts a phishing effort aimed at its voter database, days after Microsoft’s Fancy Bear disruption and Facebook’s efforts against Iranian propaganda.
The Department of Justice has announced charges against nine Iranians, affiliated with the Mabna Institute, who are accused of stealing private data from U.S. universities, private companies, and U.S. government departments.