Aliases
APT33 (Mandiant), HOLMIUM (MS), Refined Kitten (CS), Elfin, Magic Hound
Tags
State-Sponsored
Attribution
🇮🇷/IRGC
Incidents
References
Last edited
Oct 14, 2024 1:54 PM
Status
Finalized
Cloud-fluent
Targeted geography
Middle East
Targeted industries
PharmaceuticalMilitary
Iranian state-sponsored threat actor known to conduct espionage operations. In at least one campaign, they moved laterally into their targets’ cloud environments once gaining initial access to on-premise devices.