Cybereason Nocturnus cybersecurity Team: The Iran’s linked malicious code, a backdoor, features encrypted C2 channels and supports downloading additional payloads.
Clearsky cyber security experts: The Iranian APT started impersonating “Deutsche Welle” and the “Jewish Journal” using emails alongside WhatsApp messages and LinkedIn profiles.