| SYMBOL | COMMON_NAME | aka. SYNONYMS |
Cotton Sandstorm is an Iranian threat actor involved in hack-and-leak operations. They have targeted various organizations, including the French satirical magazine Charlie Hebdo, where they obtained and leaked personal information of over 200,000 customers. The group has been linked to the Iranian government and has been sanctioned by the US Treasury
There are currently no families associated with this actor.
| 2023-06-05
⋅
Sekoia
⋅
Iran Cyber Threat Overview Cotton Sandstorm |
| 2023-02-03
⋅
Microsoft
⋅
Iran responsible for Charlie Hebdo attacks Cotton Sandstorm |
| 2023-02-02
⋅
Microsoft
⋅
Iran responsible for Charlie Hebdo attacks Cotton Sandstorm |
| 2022-01-26
⋅
FBI
⋅
PIN-20220126-001 Context and Recommendations to Protect Against Malicious Activity by Iranian Cyber Group Emennet Pasargad Cotton Sandstorm |