Black Industry: IRGC-Linked offensive OT framework

**A new offensive OT framework is being promoted on a TOR-based marketplace by a group identified as “APT Iran” (linked to CyberAv3ngers and potentially the IRGC), offering a purchasable platform (ADV-PLATFORM-01) with modules for industrial protocol scanning, exploitation, PLC firmware backdoors, HMI manipulation, and grid control; the report assesses the offering as likely functional and highlights the high-risk implications for critical industrial and military infrastructure despite limited direct evidence of active exploitation.**