Iran-linked hacker group targets Israeli government agencies
A newly identified hacker group believed to be linked to Iran has carried out cyberattacks against Israeli government institutions and IT companies since the beginning of 2026, according to Israeli cybersecurity firm Check Point.
The company said it had identified the group, known as Cavern Manticore, which uses a sophisticated modular infrastructure to covertly infiltrate networks through legitimate remote administration tools and software update mechanisms, Caliber.Az reports, citing foreign media.
Check Point's researchers noted that the primary targets of the attacks have been government agencies and IT service providers.
In a threat intelligence report released on July 6, the researchers wrote: "The adversary’s ability to gain access to organizations in the defense and government sectors during the US military campaign 'Operation Epic Fury' demonstrates both a high operational tempo and a disciplined approach to target selection."
According to the company, Cavern Manticore's tactics closely resemble those of the previously identified MuddyWater and Lyceum hacking groups, which researchers believe are affiliated with Iran's Ministry of Intelligence.
Check Point further stated that the group's activity intensified amid the U.S. military campaign against Iran, which, according to the company's analysts, indicates a high degree of speed and precision in its cyber operations.
By Bakhtiyar Abbasov







