← Back to Pulse Feed
PULSE DETAIL
Facebook/Meta took action against a previously unreported hacking group from Iran that targeted or
spoofed companies in multiple industries around the world. This included energy companies in
Saudi Arabia, Canada, Italy, and Russia; the information technology industry in India and United
Arab Emirates; the maritime logistics industry in UAE, Iceland, Norway, Saudi Arabia, US, Israel,
and India; telecommunications companies in Saudi Arabia and UAE; and the semiconductor
industry in Israel, US, and Germany. This group used similar TTPs to another threat actor dubbed Tortoiseshell that we reported on
last year, but in this case we saw different targeting, technical infrastructure, and distinct
malware.
| TYPE | INDICATOR | DESCRIPTION | CREATED | |
|---|---|---|---|---|
| hostname | talktalky.azurewebsites.net | — | 2022-04-20 | |
| domain | alharbitelecom.co | — | 2022-04-20 | |
| domain | apply-jobs.com | — | 2022-04-20 | |
| domain | applytalents.com | — | 2022-04-20 | |
| domain | appslocallogin.online | — | 2022-04-20 | |
| domain | careers-finder.com | — | 2022-04-20 | |
| domain | cloudgoogle.co | — | 2022-04-20 | |
| domain | cortanaservice.com | — | 2022-04-20 | |
| domain | cortanaupdate.co | — | 2022-04-20 | |
| domain | edge-cloudservices.com | — | 2022-04-20 | |
| domain | elecresearch.org | — | 2022-04-20 | |
| domain | enerflex.org | — | 2022-04-20 | |
| domain | etisalatonline.com | — | 2022-04-20 | |
| domain | exprogroup.org | — | 2022-04-20 | |
| domain | freechess.live | — | 2022-04-20 | |
| domain | funnychess.online | — | 2022-04-20 | |
| domain | getadobe.net | — | 2022-04-20 | |
| domain | globaltalent.in | — | 2022-04-20 | |
| domain | googleservices.co | — | 2022-04-20 | |
| domain | googleupdate.co | — | 2022-04-20 | |
| domain | helpdesk-product.com | — | 2022-04-20 | |
| domain | khaleejtimes.co | — | 2022-04-20 | |
| domain | librarycollection.org | — | 2022-04-20 | |
| domain | linkedinz.me | — | 2022-04-20 | |
| domain | listen-books.com | — | 2022-04-20 | |
| domain | lukoil.in | — | 2022-04-20 | |
| domain | mastergatevpn.com | — | 2022-04-20 | |
| domain | microsoftcdn.co | — | 2022-04-20 | |
| domain | microsoftdefender.info | — | 2022-04-20 | |
| domain | microsoftedgesh.info | — | 2022-04-20 | |
| domain | mideasthiring.com | — | 2022-04-20 | |
| domain | office-shop.me | — | 2022-04-20 | |
| domain | onedrivelive.me | — | 2022-04-20 | |
| domain | onedriveupdate.net | — | 2022-04-20 | |
| domain | online-audible.com | — | 2022-04-20 | |
| domain | online-chess.live | — | 2022-04-20 | |
| domain | outlookde.live | — | 2022-04-20 | |
| domain | outlookdelivery.com | — | 2022-04-20 | |
| domain | remgrogroup.com | — | 2022-04-20 | |
| domain | saipem.org | — | 2022-04-20 | |
| domain | sauditourismguide.com | — | 2022-04-20 | |
| domain | savemoneytrick.com | — | 2022-04-20 | |
| domain | sharepointnotify.com | — | 2022-04-20 | |
| domain | sparrowsgroup.org | — | 2022-04-20 | |
| domain | supportskype.com | — | 2022-04-20 | |
| domain | talent-recruitment.org | — | 2022-04-20 | |
| domain | thefreemovies.net | — | 2022-04-20 | |
| domain | updatedefender.net | — | 2022-04-20 | |
| domain | updateservices.co | — | 2022-04-20 | |
| hostname | defenderupdate.ddns.net | — | 2022-04-20 | |
| hostname | enerflex.ddns.net | — | 2022-04-20 | |
| hostname | getadobe.ddns.net | — | 2022-04-20 | |
| hostname | updateddns.ddns.net | — | 2022-04-20 | |
| hostname | updatedns.ddns.net | — | 2022-04-20 |