FBI Alert System ME-000092-TT: Malicious cyber activity of Iran-based Mabna Institute

March 23, 2018
Malicious cyber activity of Iran-based Mabna Institute

According to information derived from an FBI investigation, a group of malicious cyber actors working for the Iran-based Mabna Institute (Mabna) have been conducting coordinated and broadly targeted password spray attacks against organizations in the United States and abroad. Victims of Mabna often lack multi-factor authentication (MFA), lack preventative network activity alerts, and allow easy-to-guess passwords (e.g., “Winter2018”, “Password123!”).

Key Resources

Related Resources

Advisory
Hospitals That Are Oracle Customers Urged to Take Immediate Action to Address Security Vulnerability
Public
Issue Landing Page
Cybersecurity and Risk Advisory Service
Issue Landing Page
AHA Preferred Cybersecurity & Risk Provider Program
Issue Landing Page
Support for Your Cybersecurity Program
Guides/Reports
Cybersecurity and Risk Advisory Services
Standards/Guidelines
Become an AHA Preferred Cybersecurity and Risk Provider
Public