Defense firms targeted with dangerous new malware, Microsoft warns

Microsoft has warned that Iranian hackers from the group APT33 (“Peach Sandstorm”) are targeting defense contractors with a new malware named “FalseFont”. This information-stealing malware can give attackers access to files and sensitive data from compromised systems, enabling them to execute files. The usual methods of infiltration are suspected to be phishing emails, social engineering, and exploiting unpatched device vulnerabilities. Organizations are advised to bolster their security with measures like resetting passwords and multi-factor authentication.