Thursday, May 30 2024

Security researchers claim virtual server provider Cloudzy has been providing internet services to aid state-affiliated hackers in their espionage endeavors. The report found the VSP company had been leasing server space to resell to 17 hacking groups spanning the globe.

This includes groups tied to Chinese, Iranian, North Korean, Russian, Indian, Pakistani and Vietnamese governments. According to the report, between 40 to 60 percent of Cloudzy’s client base are entities potentially engaging in malicious activities.

Halcyon arrived at this conclusion through an investigation into Cloudzy’s online presence, involving the direct rental of servers from the cloud service provider. The researchers established a connection between Cloudzy and well-known cyber operations linked to state-sponsored groups.

Cloudzy CEO Hannan Nozari disputed the claim in a LinkedIn exchange with Reuters by saying that the company is not responsible for their clients’ actions. Nozari followed up by describing that the company has only discovered an estimated 2% of its business to be malicious.

The report also identified Cloudzy as one of the common service providers for supporting ransomware attacks. This comes along with evidence from Halcyon pointing out that Cloudzy is likely operating out of Tehran, Iran. Because the company is incorporated in the US, operating in Iran violates US sanctions.

Halcyon has brought attention to this case, exemplifying how hackers leverage small companies operating on the outskirts of cyberspace to carry out large hacks.


CrowdStrike Set to Acquire Bionic.AI


Buguard Secures $500K Seed Funding

Check Also


Don’t Miss

Best Cloud Security Posture Management (CSPM) Software

Ellie Buscemi

What is Cloud Security Posture Management and how does it work? Cloud Security Posture Management (CSPM) is a product, service or platform that allows a business to protect their cloud infrastructure through the prevention, detection and response of cyber risks. A CSPM offering uses known and effective frameworks, regulatory standards and company policies to confirm […]

Best Privileged Access Management (PAM) Products

Lara Oporto

What is Privileged Access Management and how does it work? Privileged Access Management (PAM) products stand as a crucial fortress in fortifying your company’s digital landscape. Functioning as a meticulous guardian, PAM offerings orchestrate the establishment of access protocols, meticulously determining who holds privileged access to critical data and the specific circumstances under which such […]

Best Automated Moving Target Defense (AMTD) Offerings

Ellie Buscemi

What is Automated Moving Target Defense and how does it work? Automated Moving Target Defense (AMTD) is a recent innovation in cybersecurity that focuses on flexibility, deception and attack prevention. AMTD has four main components: it provides proactive cyber defense mechanisms, contains automation to change the attack surface, utilizes deception technology and can execute preplanned […]

Third-Party Risk Management Solutions

Lara Oporto

What is Third-Party Risk Management? Third-Party Risk Management (TPRM) software assists organizations in managing risks associated with their relationships with suppliers, vendors and service providers. The products offer a range of features to automate and streamline various aspects of third-party risk management. They typically include tools for risk assessment, due diligence, contract management and ongoing […]

Best Industrial Internet of Things (IIoT) Platforms

Lara Oporto

Industrial Internet of Things (IIoT) offerings are technological solutions empowering businesses to connect, manage and analyze data from a multitude of devices and systems within industrial settings, such as manufacturing, energy, transportation, logistics and healthcare. What are Industrial Internet of Things (IIoT) platforms and how do they work? Industrial Internet of Things (IIoT) platforms are […]

The words Endpoint Detection and Response (EDR) on a green background with lines on the right side of the image

Best Endpoint Detection & Response Platforms

Lara Oporto

Endpoint Detection & Response platforms continuously monitor endpoints for signs of malicious activities, such as unauthorized access or unusual behavior, enabling rapid detection and response to potential cyber threats to safeguard organizational assets. What is Endpoint Detection and Response and how does it work? Endpoint Detection and Response (EDR) is a cornerstone in modern cybersecurity […]