IronHusky was detected using a Windows zero-day to launch a remote access Trojan dubbed MysterySnail. Command and control infrastructure IronHusky use has been active since at least 2012.
- IT companies, diplomatic missions, and defense contractors in the United States.
Suspected state sponsor
Type of incident
- Private sector