The Limited Times

Now you can see non-English news...

Home News Business Sports Life Tech Presidents Elections ↑↑

Iranians impersonated the families of the abductees and attacked Israeli targets online - voila! technology

2024-02-28T08:45:00.120Z

Highlights: Iranians impersonated the families of the abductees and attacked Israeli targets online - voila! technology. Google Cloud company Mandiant revealed today (Wednesday) extensive espionage activity by a cyber group suspected of being Iranian. The group, known as UNC1549, is apparently linked to Iran's Revolutionary Guards and has been active since at least June 2022. The campaign is mainly directed against elements in the aviation, space and security sectors in the Middle East, and in particular in Israel and the United Arab Emirates.

According to the report, as part of the attack, the group posed as a movement for the return of the Israeli abductees

Iranian cyber attack/ShutterStock

Google Cloud company Mandiant revealed today (Wednesday) extensive espionage activity by a cyber group suspected of being Iranian.

The group, known as UNC1549, is apparently linked to Iran's Revolutionary Guards and has been active since at least June 2022.



The campaign is mainly directed against elements in the aviation, space and security sectors in the Middle East, and in particular in Israel and the United Arab Emirates.

The group may also attack elements in Turkey, India and Albania.

The intelligence gathered on these bodies is relevant to Iran's strategic interests, and may be used for espionage purposes as well as for kinetic (offensive) operations.

Use of content related to Hamas

As part of the attack, content that is directly linked to the war with Hamas was used.

The group impersonated the "Bring Them Home Now" movement, which calls for the return of the Israeli abductees from Hamas captivity, and distributed the damaged pizza in the name of MINIBUS through a fake website of the movement.



In addition, during the installation of the malware, the user is shown fake content (an image of a protest for the return of the abductees) designed to create legitimacy in the eyes of the user and disguise the malicious activity.

Apart from that, the group uses fake job offers to spread its harmfulness - especially in the fields of security and technology.

For example, the group used a website impersonating Boeing to distribute the harmful MINIBIKE, and also to steal passwords through fake login pages.

camouflage methods

The group uses a variety of methods to disguise its activity, including social engineering - sending messages and phishing emails and distributing fake websites for downloading harmful.

In addition, Microsoft's cloud infrastructure (Azure) is widely used, when communication with them may seem like a legitimate activity.

According to Google, using infrastructure located in Israel and the United Arab Emirates (in the same countries as the organizations the group attacks) makes it difficult to identify the group's malicious activity against those entities.

  • More on the same topic:

  • Iran

  • Cyber

Source: walla

All tech articles on 2024-02-28

You may like

Trends 24h

Latest

Rhône: a mayor resigns, citing “anti-Semitic insults”
2024-04-20T21:12:46.476Z

Beautiful women, mustached men, bright colors: nothing helps the Netflix series
2024-04-20T21:12:37.777Z

Three appeals to the Court of Cassation after the acquittal of a police officer prosecuted for violence against his ex-wife and children
2024-04-20T20:32:41.466Z

The Cahors public prosecutor will be tried for domestic violence
2024-04-20T20:22:41.042Z

How to detect which applications use the most cell phone battery
2024-04-20T19:03:15.915Z

Lyon: a new Islamophobic tag discovered on the wall of a mosque
2024-04-20T18:03:00.951Z

Cold snap in Germany: Do I need winter tires again now?
2024-04-20T17:23:35.600Z

Mercedes V-Class in the driving test: luxury bus with magnetic champagne glass
2024-04-20T17:23:18.469Z

Paris: extended police custody for man suspected of entering Iranian consulate with fake explosives
2024-04-20T16:42:34.357Z

Essonne: five people indicted and imprisoned for attacking and stealing from prostitutes
2024-04-20T16:22:33.920Z

“My dear president, he is going to kill her”: a young woman calls out Emmanuel Macron on the domestic violence suffered by his mother
2024-04-20T16:02:46.385Z

VIDEO. United States: Tourists pull bear cub from tree to take selfie
2024-04-20T15:52:46.698Z

“Everything is running out of steam”: almost seven months after Lina’s disappearance, a support concert organized in her town
2024-04-20T15:13:03.484Z

Grande-Synthe: police force reinforced after two attacks in less than a week
2024-04-20T14:42:41.813Z

Knife attack in Bas-Rhin: the parents of the schoolgirl who died after feeling unwell file a complaint
2024-04-20T13:12:40.491Z

Grande-Synthe: a 15-year-old teenager attacked and left naked in the street
2024-04-20T11:12:43.467Z

United States: death of the man who set himself on fire in front of the court where Donald Trump is being tried
2024-04-20T10:22:33.797Z

Landes: the body found charred is that of a 45-year-old man missing, the theory of suicide favored
2024-04-20T08:42:40.386Z

“We have lost confidence”: investigation opened in Bordeaux after the death of a woman following a minor operation
2024-04-20T08:12:53.039Z

Imam of Toulouse expelled: who is Mohamed Tataïat, convicted of provoking hatred towards Jews?
2024-04-20T06:02:43.821Z

Artificial intelligence will flood the networks: Meta launches its model on WhatsApp, Facebook and Instagram
2024-04-20T04:53:19.714Z

New Dacia Spring: Small electric car remains affordable even after the facelift
2024-04-20T03:42:59.258Z

Electric car or combustion engine: Which drive means you have to go to the workshop more often?
2024-04-20T03:42:37.446Z

Alert at the Iranian consulate in Paris: the man arrested had already tried to set fire to the building in 2023
2024-04-20T00:42:21.829Z

Murder of Philippe Coopman: “ambush”, motive, background… what to remember from the prosecutor’s press conference
2024-04-20T00:34:51.915Z

Hyundai buys 1,000 cc proves: less is more
2024-04-20T00:32:44.383Z

Sweden: Man arrested after attacking three women aged 65 to 80
2024-04-20T00:23:04.404Z

Disappearance of Marwan Berreni: the investigation into “search for the causes of death” dismissed
2024-04-19T23:52:54.904Z

Châteauroux: accused of rape and sexual assault on around twenty patients, a doctor sentenced to 11 years in prison
2024-04-19T23:44:58.347Z

Ben Gvir put the world in a dilemma: how the hell do you translate "Dardala"?!
2024-04-19T23:44:20.047Z

"The state does not encourage the transition to an electric vehicle"
2024-04-19T23:43:59.150Z

“Our thoughts are with you”: in Romans, a white march to pay tribute to Zakaria
2024-04-19T23:33:46.324Z

Traffic in spiders and reptiles between Guyana and Alsace: a thousand black widows seized
2024-04-19T23:33:15.862Z

Vosges: he said he was a fan of “Fifty Shades of Grey”, a man sentenced to thirteen years in prison for rape
2024-04-19T23:22:22.036Z

Indonesia's Ruang Volcano Erupts Again
2024-04-19T22:15:41.792Z

Off to the rally, Pontedera world capital of the Vespa
2024-04-19T21:12:19.502Z

“Mom took him and threw him away”: in Pau, a mother convicted of hitting and starving her 4-year-old son
2024-04-19T21:05:48.053Z

E-car driver advises against buying an electric car: “Save yourself the money”
2024-04-19T20:45:30.507Z

Île de Ré: the man suspected of having stabbed his friend to death was arrested in the Paris region
2024-04-19T20:41:04.353Z

What time is it on the Moon? NASA's lunar challenge
2024-04-19T20:24:23.381Z

How to avoid dementia? Researchers have identified three main causes
2024-04-19T20:18:59.708Z

New Zealand: a ram suspected of having killed an octogenarian couple
2024-04-19T19:42:49.922Z

Hyundai Ioniq 5 N in the driving test: electric sports car with eight-cylinder sound
2024-04-19T18:28:29.288Z

A month after Omer Detz died prematurely: Orna and Moshe Detz release a song of his
2024-04-19T17:09:35.667Z

Violence by minors: Dupond-Moretti wants to set up “real consultation” on the minority excuse
2024-04-19T16:46:21.070Z

Knife attack in Bas-Rhin: a schoolgirl died after a heart attack on the sidelines of the attack
2024-04-19T15:53:09.577Z

Sydney church attack: 16-year-old suspect charged with terrorism
2024-04-19T15:09:20.351Z

Koran burning, thousands of armed police and online threats: ahead of the Eurovision, Malmö is preparing for a catastrophe
2024-04-19T14:23:09.712Z

Heatwave, epidemics, attacks... how France is preparing for health threats before the Olympics
2024-04-19T13:41:27.517Z

Why Facebook has been filled with Jesus Christs made with eggs, spaghetti or cauliflowers
2024-04-19T13:34:15.433Z

© Communities 2019 - Privacy

The information on this site is from external sources that are not under our control.
The inclusion of any links does not necessarily imply a recommendation or endorse the views expressed within them.