Hacker Group Exposes Iranian APT Operations and Members
Since the end of last month, a mysterious actor using the moniker Lab Dookhtegan has been leaking information on the state-backed Iranian hacking group APT34 (aka OilRig, HelixKitten) through a Telegram channel. The leaked information provides insights into the infrastructure of APT34, its members, the tools they use and the victims they target. It also includes personal data on certain employees of Iran’s Ministry of Intelligence.
Lab Dookhtegan says the leaks aim to draw attention to cyberattacks carried out by Iran’s Ministry of Intelligence against neighboring countries, and thereby to expose the Iranian regime’s “real ugly face.”