Category: Threat Actor Profiles
-
Read more: APT34 (OilRig): Iran’s Adaptive Cyber Espionage Arm from 2014–2025
APT34 (OilRig): Iran’s Adaptive Cyber Espionage Arm from 2014–2025
APT34, Iran’s leading cyber espionage group, evolves with cloud C2, DNS tunneling, and Exchange exploits. Full strategic profile and mitigation insights.
-
Read more: Earth Lamia: China-Nexus APT Exploiting Web Application Flaws Across Asia
Earth Lamia: China-Nexus APT Exploiting Web Application Flaws Across Asia
China-linked APT Earth Lamia exploits web vulnerabilities across Asia using modular backdoors and custom privilege escalation tools.
-
Read more: [Threat Actor Profile] Sandworm’s 2024–2025 Playbook — Infrastructure, Targets, TTPs
![[Threat Actor Profile] Sandworm’s 2024–2025 Playbook — Infrastructure, Targets, TTPs](https://noorstream.com/wp-content/uploads/2025/08/noorstream-sandworm.png)
[Threat Actor Profile] Sandworm’s 2024–2025 Playbook — Infrastructure, Targets, TTPs
Sandworm (APT44) GRU unit’s 2024–2025 playbook: ZEROLOT wiper, BadPilot access ops, and sector‑specific TTPs mapped to MITRE.