Unit 42 researchers have attributed a recent wave of targeted cyberattacks to Screening Serpens (aka UNC1549, Smoke Sandstorm, Iranian Dream Job), an Iran-nexus APT that has been active since at least 2022. Between mid‑February and April 2026, the group deployed six new remote access Trojan (RAT) variants across coordinated campaigns that targeted organizations in the […]
The post Threat Actors Linked to Iran Leverage AppDomainManager to Evade Detection appeared first on Cyber Security News.