Cybersecurity researchers have identified an Iranian group named Void Manticore that has been actively engaging in destructive attacks using wipers and ransomware since October 2023, targeting Israeli organizations by employing a custom wiper called 'BiBi' and collaborating with another group called 'Scarred Manticore.' Void Manticore's tactics include compromising internet-connected servers, exploiting RDP for domain admin credentials validation, and deploying wipers to corrupt specific file types or even destroy entire partition tables, resulting in extensive financial losses and operational downtime for the victims, showcasing a quick and direct approach to attacks. They use various identifiers like 'Homeland Justice' and 'Karma' in their communications to serve their destructive objectives, and their partnership with Scarred Manticore amplifies their impact and reach, thus making them a highly dangerous threat actor in the cybersecurity landscape
```https://cybersecuritynews.com/void-manticore-attacking-organizations/