Unit 42 says Iranian operations are using less custom malware and more destructive living-off-the-land tactics, focusing on the enterprise management plane and identity resilience.
Iranian cyber ops shift: less custom malware, more destructive LotL.
They target the enterprise management plane, not just EDR evasion.
When management tools become weapons, defense must evolve to strict identity resilience.
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new expert voices, debates, and emerging ideas.
← Back to Cyber Security