+- Red Security (https://redsecurity.info/cc)
+-- Forum: General (https://redsecurity.info/cc/forumdisplay.php?fid=1)
+--- Forum: News (https://redsecurity.info/cc/forumdisplay.php?fid=4)
+--- Thread: News Iran Hacking Group Used Open Source PupyRAT to Attack Energy Sector Organization (/showthread.php?tid=1376)
Iran Hacking Group Used Open Source PupyRAT to Attack Energy Sector Organization - Mr.Kurd - 01-25-2020
In The Name OF Allah
Al-Salam Alekum
![[Image: 80934108326335111152295902475754305.jpg]](https://www.cyberintelligence.in/wp-content/uploads/2016/10/80934108326335111152295902475754305.jpg)
Iran Attackers now attacking Energy Sector Organizations
Quote:PupyRAT is a cross-platform (Windows, Linux, OSX, Android) is a remote administration and post-exploitation tool.
It was written in python, acts as a backdoor, allows an attacker to create remote command shells, steal password credentials, log keystrokes, steal files, and to record webcams.
The tool is intended for using red-team purposes, but the Iranian hacking groups APT33 (Elfin, Magic Hound, HOLMIUM) and COBALT GYPSY (which overlaps with APT34/OilRig), made heavy use of the tool.
Quote:These groups are known for targeting IT sectors in the United States, Europe, and elsewhere, now they have to target the physical control systems in electric utilities, manufacturing, and oil refineries.
The Source GB Hackers
Stay Safe..
Wa Salam Alekum