Emennet Pasargad, an Iranian cyber-operations group, is broadening its attacks beyond Israel and the U.S. to include new IT assets. The group is also known as Cotton Sandstorm. The U.S. departments of Justice and Treasury released an advisory last week noting the group’s new tactics. Emennet Pasargad is providing resources and services to Middle Eastern threat groups by acting as a legitimate company. This year, the malicious group began scanning for IP cameras and probing election systems. Iran’s increased use of cyber operations is a new way for the country to target its enemies. In 2020 and 2022, the group made disinformation campaigns targeting U.S. elections. Now, Iran is stepping up its cyberattacks even further, often posing as a legitimate IT services company. 

Read more: https://www.darkreading.com/vulnerabilities-threats/iranian-group-targets-ip-cameras-extends-attacks-beyond-israel