The article describes an ongoing campaign by the Iranian APT group Seedworm, which has compromised networks at a U.S. bank, airport, and software company; however, the specific attack vectors, CVSS score, affected software versions, fixed versions, and workarounds are not provided in the source material.
2026-03-05 (Back to Inventory) Seedworm: Iranian APT on Networks of U.S. Bank, Airport, Software Company Author(s): Threat Hunter Team Organization: Symantec js.tsundere Open article directly Related Articles 2026-02-24 ⋅ Symantec ⋅ Threat Hunter Team North Korean Lazarus Group Now Working With Medusa Ransomware ComeBacker Medusa 2026-02-05 ⋅ Symantec ⋅ Threat Hunter Team Black Basta: Defense Evasion Capability Embedded in Ransomware Payload Black Basta 2025-11-02 ⋅ Symantec ⋅ Broadcom , Symantec Multi-Stage In-Memory Agent Tesla Campaign Targets LATAM Agent Tesla