An Iranian group has been targeting and trying to steal information from various companies from different regions such as the Middle East, the US, Europe, and Russia. According to cybersecurity researchers, the planning is being in process since 2018.
Bloomberg law, a law research firm has had prepared a report which has been researched by several technical specialists, indicates that a group of Iranian hackers were able to exploit various technical vulnerabilities in the cloud network of file storage service of Dropbox application.
The researchers have also identified the Iranian group as MalKamak, who were able to find out the vulnerabilities of Dropbox and also access the sensitive data from aerospace and telecommunication companies of the targeted companies.
According to reports, the hackers have been operating undetected and underground and had become skilled in masking their activities so that they won’t get flagged by security analysts and antivirus software. Researchers have also claimed that founding this group was a shocker for everyone and the tools and techniques that they have been using were also new.
MalKamak has been using a kind of spyware, aka, remote-access Trojan on the computer that it penetrated to get access to the information. The group was able to steal a large number of data from the company’s servers.