Aliases
APT33 (Mandiant), HOLMIUM (MS), Refined Kitten (CS), Elfin, Magic Hound
Tags
State-Sponsored
Attribution
🇮🇷/IRGC
Incidents
References
Last edited
Mar 11, 2024 5:36 PM
Status
Finalized
Cloud-fluent
Iranian state-sponsored threat actor known to conduct espionage operations. In at least one campaign, they moved laterally into their targets’ cloud environments once gaining initial access to on-premise devices.