• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Tehran Targets Female Activists in Espionage Campaign

You are here: Home / General Cyber Security News / Tehran Targets Female Activists in Espionage Campaign
March 9, 2023

Security researchers have uncovered a new Iranian state-backed cyber-espionage campaign aimed at rooting out woman human legal rights activists resulting in problems for the routine.

Secureworks fittingly introduced its examination of the hottest Cobalt Illusion campaign a day right after Intercontinental Women’s Working day.

The team is suspected of working on behalf of several Iranian governing administration entities and the Intelligence Group of the Islamic Groundbreaking Guard Corp (IRGC-IO).

✔ Approved Seller From Our Partners
Mullvad VPN Discount

Protect your privacy by Mullvad VPN. Mullvad VPN is one of the famous brands in the security and privacy world. With Mullvad VPN you will not even be asked for your email address. No log policy, no data from you will be saved. Get your license key now from the official distributor of Mullvad with discount: SerialCart® (Limited Offer).

➤ Get Mullvad VPN with 12% Discount


Targets were ordinarily contacted by a pretend Twitter consumer, ‘Sara Shokouhi,’ who spoke to them about an opportunity to add to an write-up for believe tank the Atlantic Council.

The menace actors would then attempt to phish for credentials, probably by using a malicious backlink, and/or deploy malware to the target’s device or gadget.

“Phishing and bulk data collection are main ways of Cobalt Illusion. We’ve noticed this take place in many guises in current yrs. The team undertakes intelligence accumulating, typically human-concentrated intelligence, like extracting the contents of mailboxes, get hold of lists, travel plans, relationships, physical place, and many others.,” explained Secureworks principal researcher, Rafe Pilling.

“This intel is probably blended with other resources and utilised to inform navy and security operations by Iran overseas and domestic. Which could include things like surveillance, arrest and detention, or focused killing.”

All of these qualified in the marketing campaign had been identified as lady actively involved in political affairs and human legal rights in the Middle East, the report claimed.

The faux @SaShokouhi Twitter account went to extreme lengths to surface sympathetic to the aims of its targets. It apparently tweeted and engaged with posts supportive of the mass Mahsa Amini protests in Iran, like these that includes distressing articles these types of as illustrations or photos of dead youngsters and bodily abuse suffered by protesters.

“The menace actors develop a bogus individual and use it to establish rapport with targets just before making an attempt to phish qualifications or deploy malware to the target’s device,” described Pilling.

“Having a convincing persona is an essential section of this tactic. In this occasion we ended up able to ensure that the Sara Shokouhi persona was designed working with stolen images from an Instagram account belonging to a psychologist and tarot card reader based mostly in Russia.”


Some sections of this write-up are sourced from:
www.infosecurity-journal.com

Previous Post: «rubrik unveils new points based partner programme Rubrik unveils new points-based partner programme
Next Post: Tresorit Business Standard review: A great choice for SMBs handling sensitive data tresorit business standard review: a great choice for smbs handling»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • New FjordPhantom Android Malware Targets Banking Apps in Southeast Asia
  • Qakbot Takedown Aftermath: Mitigations and Protecting Against Future Threats
  • Chinese Hackers Using SugarGh0st RAT to Target South Korea and Uzbekistan
  • Discover How Gcore Thwarted Powerful 1.1Tbps and 1.6Tbps DDoS Attacks
  • WhatsApp’s New Secret Code Feature Lets Users Protect Private Chats with Password
  • U.S. Treasury Sanctions North Korean Kimsuky Hackers and 8 Foreign Agents
  • Zyxel Releases Patches to Fix 15 Flaws in NAS, Firewall, and AP Devices
  • Zero-Day Alert: Apple Rolls Out iOS, macOS, and Safari Patches for 2 Actively Exploited Flaws
  • Google Unveils RETVec – Gmail’s New Defense Against Spam and Malicious Emails
  • North Korea’s Lazarus Group Rakes in $3 Billion from Cryptocurrency Hacks

Copyright © TheCyberSecurity.News, All Rights Reserved.