Microsoft Warns of New ‘FalseFont’ Backdoor Targeting the Defense Sector

Iranian threat actor, Peach Sandstorm, is targeting the Defense Industrial Base with a new backdoor called FalseFont, according to Microsoft Threat Intelligence. The backdoor allows attackers to remotely access systems and send information to command-and-control servers. This aligns with previous activity from Peach Sandstorm and demonstrates a continued evolution of their tactics. Recent attempts to hack Israel’s Ziv Hospital by Iranian teams were unsuccessful.