The Iranian state-sponsored group known as Nimbus Manticore has launched a sophisticated cyber campaign utilizing new malware variants, MiniFast and MiniJunk V2, through phishing schemes and SEO poisoning. This recent activity follows heightened tensions following a joint U.S.-Israeli military operation against Iran in February 2026. By impersonating legitimate organizations in the aviation and software sectors, the group has effectively broadened its attack vector across the U.S., Europe, and the Middle East, raising significant alarms across various industries.
For businesses, particularly those in targeted sectors, the implications of this campaign are profound. Organizations must enhance their cybersecurity posture by implementing robust email filtering systems, employee training on recognizing phishing attempts, and improving their overall threat intelligence capabilities. This situation underscores the critical need for proactive measures in cybersecurity, as state-sponsored actors continue to evolve their tactics and exploit geopolitical tensions. In an era where AI and machine learning can augment threat detection and response, companies must leverage these technological advancements to defend against increasingly sophisticated cyber threats.
---
*Originally reported by [The Hacker News](https://thehackernews.com/2026/05/iranian-hackers-deploy-minifast-and.html)*