The Iranian hacker group Nimbus Manticore (UNC1549) executed a sophisticated spear-phishing campaign targeting Boeing, a major aerospace and defense company, under the guise of fake job applications. Employees received deceptive emails directing them to a fraudulent career portal mimicking Boeing’s branding, where they were tricked into downloading a malicious ZIP archive disguised as a legitimate installer (setup.exe). This file deployed an evolved variant of Minibike malware (MiniJunk and MiniBrowse), establishing a backdoor for persistent access and exfiltrating sensitive data—including proprietary aerospace designs, defense contracts, and employee credentials. The breach compromised highly classified intellectual property, potentially undermining Boeing’s competitive edge in defense and aviation sectors. Given the group’s ties to Iran’s IRGC, the stolen data could be leveraged for geopolitical espionage or sold to adversarial nations, posing risks to national security. The attack also disrupted internal operations, forcing Boeing to initiate emergency cybersecurity audits, incident response protocols, and employee retraining—incurring significant financial and reputational damage. The long-term impact includes eroded trust among defense partners and potential regulatory penalties for failing to safeguard critical infrastructure data.