Port 22

New Campaign Targets Middle East Governments with IronWind Malware

Government entities in the Middle East are the target of new phishing campaigns that are designed to deliver a new initial access downloader dubbed IronWind. The activity, detected between July and October 2023, has beenattributedby Proofpoint to a threat actor it tracks under the nameTA402, which is also known as Molerats, Gaza Cyber Gang, and sharestactical overlapswith a pro-Hamas