APT 33 Uses Password Spray Campaigns to Infiltrate Organizations

Threat Level

Actor Report

For a detailed threat advisory, download the pdf file here

Summary

APT 33 (aka Peach Sandstorm) is an Iranian nation-state threat actor that was first identified in 2013. This group is notorious for conducting cyber espionage campaigns and has been associated with various cyberattacks. In the early stages of this campaign, APT 33 carried out password spray attacks against numerous organizations spanning various sectors and geographic regions. These attacks are typically aimed at gaining unauthorized access to targeted systems by systematically trying different password combinations.

To receive real-time threat advisories, please follow HiveForce Labs on LinkedIn.