Threat actors
APT33
aptIRvia MISP
1 CVE attributed
Aliases10
APT 33ATK35COBALT TRINITYElfinG0064HOLMIUMMAGNALLIUMPeach SandstormRefined KittenTA451
Motivation2
EspionageState-sponsored
Our analysis reveals that APT33 is a capable group that has carried out cyber espionage operations since at least 2013. We assess APT33 works at the behest of the Iranian government.
Attributed CVEs1
| CVE | Description | Severity | EPSS | Flags | Modified |
|---|---|---|---|---|---|
| CVE-2014-6352 | Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allow remote attackers to execute arbitrary code via a crafted OLE object, as exploited in the wild in October 2014 with a crafted PowerPoint document. | HIGH7.8 | 78%p100 | KEVWeaponized | 2026-04-22 |