• About Us
  • Advertising
  • Digital Magazine
  • Supplements
  • Media Pack
  • Privacy Policy
  • Contact us
CXO Insight Middle East
  • News
  • Opinion
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
    • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CXO50 Oman
    • CXO50
    • ICT Awards
      • Dubai
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect
    • Channel Awards 2024
    • All events
  • GITEX
  • Digital Magazine
No Result
View All Result
CXO Insight Middle East
  • News
  • Opinion
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
    • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CXO50 Oman
    • CXO50
    • ICT Awards
      • Dubai
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect
    • Channel Awards 2024
    • All events
  • GITEX
  • Digital Magazine
No Result
View All Result
CXO Insight Middle East
No Result
View All Result

Chinese Playful Taurus Activity in Iran

by CXO Staff
January 26, 2023
in News

Palo Alto Networks Unit 42 releases research on Playful Taurus targeting Iranian entities.

Chinese Playful Taurus Activity in Iran

Playful Taurus (aka APT15, BackdoorDiplomacy, Vixen Panda, KeChang and NICKEL) is a Chinese APT group typically focused on cyber espionage campaigns, historically targeting government and diplomatic entities across North America, South America, Africa, and the Middle East.

Unit 42’s research on Playful Taurus (aka APT15, BackdoorDiplomacy, Vixen Panda, KeChang and NICKEL) reveals:

  • · Unit 42 identified several Iranian Government entities attempting to connect to known Playful Taurus malware infrastructure between July and late December 2022 – this activity suggests a likely compromise of the Iran Ministry of Foreign Affairs and Iranian Natural Resource Organization and other Iranian Government infrastructure.
  • · Unit 42 identified new variants of the Turian backdoor.
  • · Recent upgrades to the Turian backdoor and new C2 infrastructure suggest that these actors continue to see success during their cyber espionage campaigns.
  • · Chinese APT actor Playful Taurus remains an active threat to government and diplomatic entities across North and South America, Africa, and the Middle East.

This activity between China and Iran is also occurring amid the backdrop of the 2021 25-year cooperation accord that both countries signed that entails economic, military and security cooperation, even as both countries are under different levels of United States sanctions.

Executive Summary

Playful Taurus, also known as APT15, BackdoorDiplomacy, Vixen Panda, KeChang and NICKEL, is a Chinese advanced persistent threat group that routinely conducts cyber espionage campaigns. The group has been active since at least 2010 and has historically targeted government and diplomatic entities across North and South America, Africa and the Middle East. In June 2021, ESET reported that this group had upgraded their tool kit to include a new backdoor called Turian. This backdoor remains under active development, and we assess that it is used exclusively by Playful Taurus actors. Following the evolution of this capability, we recently identified new variants of this backdoor as well as new command and control infrastructure. Analysis of both the samples and connections to the malicious infrastructure suggests that several Iranian government networks have likely been compromised by Playful Taurus.

Palo Alto Networks customers receive protections from the threats described in this blog through Advanced URL Filtering, DNS Security, Cortex XDR and WildFire malware analysis.

Tags: APT15Chinese APTIranKeChangNICKELPalo Alto NetworksPlayful TaurusVixen Panda
ShareTweet

Related Posts

Bimser and MeaTech forge partnership to accelerate digital transformation across MEA 
Business

Bimser and MeaTech forge partnership to accelerate digital transformation across MEA 

Turkish enterprise software company Bimser, with over 2,500 global customers and a quarter-century of experience, has announced a strategic regional...

May 23, 2025
NMK doubles down on Pro AV and Saudi Market at SLS 2025
Future

NMK doubles down on Pro AV and Saudi Market at SLS 2025

Fresh from its participation at SLS Expo 2025 a dynamic three-day showcase that gathers the best in lighting, audio video (AV), and...

May 23, 2025

Discussion about this post

Latest Issue

Bimser and MeaTech forge partnership to accelerate digital transformation across MEA 

Bimser and MeaTech forge partnership to accelerate digital transformation across MEA 

May 23, 2025
NMK doubles down on Pro AV and Saudi Market at SLS 2025

NMK doubles down on Pro AV and Saudi Market at SLS 2025

May 23, 2025
Gigamon 2025 Survey: 91% of security leaders are recalibrating Hybrid Cloud Risk in AI Era

Gigamon 2025 Survey: 91% of security leaders are recalibrating Hybrid Cloud Risk in AI Era

May 23, 2025

The most trusted source of strategic intelligence for IT decision makers in the Middle East.

About

  • About Us
  • Advertising
  • Digital Magazine
  • Supplements
  • Media Pack
  • Contact Us

Policies

  • Privacy Policy

© 2024 – CXO Insight Middle East. All Rights Reserved.

Facebook-f X-twitter Linkedin
Separated they live in Bookmarksgrove right at the coast of the Semantics, a large language ocean. A small river named Duden.

About

  • About Us
  • Site Map
  • Contact Us
  • Career

Policies

  • Help Center
  • Privacy Policy
  • Cookie Setting
  • Term Of Use

Join Our Newsletter

© 2024 – CXO Insight Middle East. All Rights Reserved.

Facebook-f Twitter Youtube Instagram

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
Join our mailing list
Sign up here to get the latest news, updates and special offers delivered directly to your inbox.
No Result
View All Result
  • News
  • Opinions
  • Business
    • Industries
      • Transport
      • Retail
      • Government
      • Real Estate
      • Education
      • Energy
      • Banking and Finance
  • Channel
  • Future
    • Tech
    • Gadgets
    • Science
    • Space
    • Sustainability
  • Events
    • Channel Insights Summit 2025
    • Insight Innovation Summit
    • CX50 Oman
    • CXO50
    • ICT Awards
      • Dubai
      • Saudi Arabia
    • Cyber Strategists Summit
    • Cloud Connect
    • Channel Awards 2023
    • All events
  • Videos
  • GITEX GLOBAL
  • Digital Magazine

© 2024 - CXO Insight Middle East. All Rights Reserved.