Imperial Kitten Attacking Tech Firms with SQLi & Scanning Tools

IMPERIAL KITTEN, an Iranian adversary tied to the Islamic Revolutionary Guard Corps, has been found running strategic web compromise (SWC) operations focused on transportation, logistics, and technology firms. Using tactics such as SQL injection, the group uses job recruitment-themed content to spread .NET-based implants, primarily targeting Middle Eastern entities. Companies are lured to compromised, adversary-controlled websites where visitor data is collected. In some cases, firms such as upstream IT service providers, are targeted for significant data exfiltration.