"Iranian Group TA453 Launches Phishing Attacks with BlackSmith"

The Iranian-linked threat actor "TA453," also known as "Charming Kitten," has been using a PowerShell-based malware toolkit named "BlackSmith" in a sophisticated phishing attack. According to researchers at Proofpoint, the campaign began in July 2024, targeting a prominent Jewish figure with emails spoofing the Institute for the Study of War (ISW). TA453, posing as the ISW Research Director, invited the target to a podcast to appear legitimate. After building trust, the group sent a malicious link masked as a legitimate podcast URL to deliver BlackSmith. This article continues to discuss findings regarding TA453's phishing campaign that delivers BlackSmith malware.

Infosecurity Magazine reports "Iranian Group TA453 Launches Phishing Attacks with BlackSmith"

Submitted by grigby1