VERY IMPORTANT

Cyber-security firm SentinelOne said in a report published today that it discovered a new threat actor operating out of Iran and which heavily relied on data-wiping malware to destroy its targets’ IT infrastructure, and then ask for ransoms in an attempt to mask their attacks as ransomware extortions. Named Agrius, the threat actor has been active since early 2020, and while initial attacks were aimed at targets in the Middle East region, since December 2020, the group has re-focused operations on Israel.