On December 29, a group of attackers used a data-deleting program known as a “wiper” to attempt to destroy data on systems at Bahrain’s national oil company. Many of its techniques link the code to Shamoon and ZeroCleare, two data-destroying programs used by Iranian-linked groups to target firms in the Middle East. The group behind Dustman had access to the victim’s network since July 2019. The attack missed some machines on the network because they had been in sleep mode.”]
Source: https://www.darkreading.com/advanced-threats/dustman-attack-underscores-iran-s-cyber-capabilities