This article has been indexed from Softpedia News / Security
TA456 was discovered as the perpetrator of a social engineering and targeted malware campaign on behalf of the Iranian government after spending years impersonating an aerobics instructor on Facebook, according to Proofpoint.
The Iranian state-sponsored cybercrime gang developed a contact with an employee working at a subsidiary of an aerospace defense contractor using the social media persona Marcella Flores. The relationship was maintained across corporate and personal communication platforms.
By sending the target malware through an ongoing email communication chain, the threat actor attempted to take advantage of this relationship in the early months of June 2021. The macro-laden paper intended to be used to conduct reconnaissance on the target’s computer, had individualized material and highlighted the…
Read the original article: Iranian Hackers Posed as Aerobics Instructors to Target Aerospace Employees