FBI Alert System ME-000092-TT: Malicious cyber activity of Iran-based Mabna Institute

March 23, 2018
Malicious cyber activity of Iran-based Mabna Institute

According to information derived from an FBI investigation, a group of malicious cyber actors working for the Iran-based Mabna Institute (Mabna) have been conducting coordinated and broadly targeted password spray attacks against organizations in the United States and abroad. Victims of Mabna often lack multi-factor authentication (MFA), lack preventative network activity alerts, and allow easy-to-guess passwords (e.g., “Winter2018”, “Password123!”).

Related Resources

Letter
Public
AHA letter to Senator Mark Warner regarding reducing cybersecurity vulnerabilities in the health care sector.
Member
Between at least June 2018 and January 2019, Nigerian cyber criminals have targeted and accessed healthcare claims payment processors throughout th
This two-part special report explores what hospital and health-system boards can do to reduce cyber risks and vulnerabilities.
Member
This PIN has been released TLP: GREEN: The information in this product is useful for the awareness of all participating organizations within their
Public
This section contains publicly available Cyber Threat Intelligence reports including FBI and TLP-White reports. For access to restricted distribution reports…
Public