Topic: geopolitical cyber activity

Sort by: Relevance | Date
  • Pay2Key Ransomware Group Linked to Iran Returns
    March 27, 2026

    Pay2Key Ransomware Group Linked to Iran Returns

    The ransomware group Pay2Key, with suspected ties to Iran, has re-emerged with significantly upgraded technical capabilities, and its activity appears to accelerate during periods of geopolitical tension, such as recent U.S.-Iran tensions. In a recent attack on a U.S. healthcare provider, the gro...

    Read More »
  • FBI: Handala Hackers Use Telegram for Malware Attacks
    March 25, 2026

    FBI: Handala Hackers Use Telegram for Malware Attacks

    The FBI warns that Iranian state-sponsored hackers are using Telegram as a command-and-control infrastructure to deploy malware against journalists, dissidents, and opposition groups globally. These campaigns, linked to groups like Handala and Homeland Justice, use social engineering to infect Wi...

    Read More »

Related Topics

data exfiltration (147) lateral movement (58) evasion techniques (36) credential harvesting (18) social engineering attacks (15) ransomware deployment (13) ransomware group (8) healthcare sector targeting (5)