Home / Companies / Crowdstrike / Blog / Post Details
Content Deep Dive

Who is REFINED KITTEN?

Blog post from Crowdstrike

Post Details
Company
Date Published
Author
AdamM
Word Count
1,573
Company Posts That Month
Language
English
Hacker News Points
-
Post removed?
No
Summary

REFINED KITTEN, a nation-state threat actor linked to the Islamic Revolutionary Guard Corps of Iran, focuses on espionage activities, particularly targeting entities in Saudi Arabia, the United Arab Emirates, and the United States, with a preference for the aerospace, defense, energy, oil, and gas industries. The adversary employs spear-phishing tactics, often using spoofed domains with job-themed content to deliver malware, including open-source post-exploitation frameworks like PoshC2 and PowerShell Empire. REFINED KITTEN's operations have evolved from custom remote access tools to mainstream open-source malware frameworks, reflecting its adaptable and sophisticated approach to intelligence gathering. CrowdStrike, which tracks this and other threat actors such as HELIX KITTEN and FANCY BEAR, provides insights into their tactics, techniques, and procedures through its threat intelligence services, helping organizations enhance their cybersecurity strategies.

Trends Found in this Post
Trend Post Mentions Total Month Mentions Posts Companies MoM
AI Agents 1 2,394 1,321 1 -
Zero Trust 1 1,843 1,331 3 +61333%
Use This Data

Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.