Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Iranian APT Targets US With Drokbk Spyware via GitHub
Threat Actors
December 09, 2022
Dark Reading
A subgroup of the state-backed Iranian threat actor Cobalt Mirage is using a new custom malware dubbed "Drokbk" to attack a variety of US organizations, using GitHub as a "dead-drop resolver."
Read More
Drokbk
Iran
GitHub
command and control (C2) server
Cobalt Mirage APT group
Publisher
Previous
MuddyWater Hackers Target Asian and Middle East Countri ...
Threat Actors
Next
Over 4,000 Vulnerable Pulse Connect Secure Hosts Expose ...
Malware and Vulnerabilities
/https://cyware-ent.s3.amazonaws.com/image_bank/88e6_shutterstock_721814395.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/18e6_shutterstock_634574354.jpg)
