Unpack all the details about Iran state-sponsored cyber operations, including the most active threat groups, their TTPs, and what steps organizations can take to defend themselves in this multi-part podcast series by hosts Tova Dvorin and Adrian Culley.
How Iranian cyber attacks are shifting from espionage to destructive, large-scale operations from groups like Handala (Void Manticore) and MuddyWater (Mango Sandstorm).
How Iranian APT groups are evolving in 2026 — leveraging AI, targeting supply chains, and bypassing billion-dollar security stacks.
June 2025’s turning point: how the cyber escalation that followed Operation Rising Lion unfolded across CyberAv3ngers, Handala, and other hacktivist groups.
How Iranian-linked actors like Charming Kitten weaponize psychology, deepfakes, and AI-driven phishing to infiltrate high-value targets.
A breakdown of TTPs from APT33, OilRig (APT34), and MuddyWater — three of the most active Iranian state-sponsored threat actors targeting energy, aviation, and manufacturing.
How Iran’s cyber operations actually work as a rivalry between IRGC (loud, destructive) and MOIS (quiet, persistent), often targeting the same organizations with different tactics.
Tracing how Iran evolved from noisy disruption to stealthy, long-term persistence — from Stuxnet at Natanz to Shamoon’s destructive wake-up call.
A focused breakdown of Emennet Pasargad, an IRGC cyber unit, and what defenders can do to disrupt their playbook.
A breakdown of the FBI advisory on Iranian cyber actors and what it means for OT, IoT, and critical systems — with practical steps to validate defenses.
