Episode #32 – Iranian Hacking Group: the Not So “Charming Kitten”

This week, Jim Brangenberg is joined by cybersecurity expert Patrick McMurphy and SaferNet CEO Brad Hawkins to unravel the dark web world of APT42—better known as Charming Kitten. Spoiler alert: it’s not actually charming. This Iranian state-sponsored hacking group is a master of digital espionage, targeting activists, journalists, government officials, and even U.S. presidential campaigns. Active since 2015, they use tricks like spear phishing (fake, super-convincing emails) and their custom malware, NiceCurl and TameCat, to steal data, control devices, and monitor their victims. 

What makes APT42 terrifying? Their attacks are surgical, using fake personas and websites to manipulate even the most cautious among us. They’ve impersonated Google, mimicked trusted media outlets, and tricked people into handing over sensitive information. Their goal isn’t financial gain—it’s geopolitical influence, and they’re playing the long game. 

The takeaway? Don’t be the big fish that takes the bait. Practice smart digital hygiene: verify emails, limit personal info online, and use tools like SaferNet to block phishing and malware. After all, the web has a dark side, but with the right tools and awareness, you can stay one step ahead of digital desperados!