Iranian hackers conducted 3 year campaign trying to spy on US leaders over Facebook
'Elaborate' campaign targeted politicians and military personnel to trick them into giving up log-in credentials and downloading malware
Iranian hackers created a fake news website and a string of fake Facebook profiles as part of a three-year campaign to spy on US politicians and military officers, a new report has claimed.
Security firm iSight Partners say that fake social media personas were created by the hackers with complex backgrounds. These were used to contact targets, sending them legitimate content before trying to gain access to government and corporate networks through the use of malware.
The hackers also "intimated their interest in specific defence technology, as well as military and diplomat information by their targeting" said the company.
The operation’s targets reportedly included ambassadors, a four-star Navy admiral and lawmakers, and personnel from countries including Britain, Syria, Iraq and Afghanistan.
iSight has not disclosed the identity of any victims nor if any data has been stolen, although the firm’s executive vice president Tiffany Jones said “if it's been going on for so long, clearly they have had success.”
As part of the campaign the hackers set up a fake news site called NewsOnAir.org which republished articles from the BBC, Reuters and the Associated Press under the names of six fake journalists.
A screenshot of the fake news site. Credit: iSight
These personas – along with eight faked defence contractors – were given profiles on Facebook and other social media networks that were then used to contact targets in the US and other countries.
iSight said that this type of “social engineering” campaign was the most elaborate by any nation to be uncovered to date and that the perpetrators wanted to stay “under the radar.”
“This campaign is not loud. It is low and slow," said Jones. "They want to be stealth.”
To build credibility the fake personas attempted to befriend victims’ friends, colleagues, relatives and classmates, and would initiate contact by sharing legitimate content before sending links containing malware or requesting network credentials.
iSight said that it has alerted the FBI as well as overseas authorities and some victims. The FBI has not issued a statement on the report, although Facebook have said that they discovered the hacking group while investigating suspicious activity on the site.
A Facebook spokesperson told Reuters: “We removed all of the offending profiles we found to be associated with the fake NewsOnAir organization and we have used this case to further refine our systems that catch fake accounts.”
Earlier this month another US cyber security firm FireEye said that it had detected new activity from a hacking group believed to be operating out of Iran named the Ajax Security Team (AST).
FireEye said that the AST had been targeting defence organizations by coding their own malware, describing the move as “an evolution” for the country as it seeks better control political dissent and expand its “offensive cyber capacities.”
Life & Style blogs
iPhone 7 (or iPhone 6S) leaked pictures show similarities to older model — but Apple is fixing the biggest issue of all
The face of fertility: why do men find women who are near ovulation more attractive?
'Help me I'm trapped in a factory' messages keep being found on bottles of vitamin water
Google has set its terrifying, dreaming image robots on the public
What do the emojis on Snapchat mean?
Greece crisis: IMF was pushed around by Angela Merkel and Nicholas Sarkozy – and now it is being humiliated
Forget little green men – aliens will look like humans, says Cambridge University evolution expert
'I wish the BBC would stop calling it Islamic State' – David Cameron unleashes frustration at broadcaster
Greece crisis: The wider lesson is that it’s time to abandon this failed experiment in currencies
Girl, 7, stares down hate preacher at Ohio festival with pro-LGBT rainbow flag gesture
They are neither a 'state' nor 'Islamic': Why we shouldn't call them Isis, Isil or IS
- 1 Nathan Collier: Montana man inspired by same-sex marriage ruling requests right to wed two wives
- 2 Amber Roof: Sister of Charleston shooting suspect Dylann Roof launches fund-raising appeal for wedding and honeymoon
- 3 'Help me I'm trapped in a factory' messages keep being found on bottles of vitamin water
- 4 Right to die: Belgian doctors rule depressed 24-year-old woman has right to end her life
- 5 BP hit with record $18.7 billion fine over Deepwater Horizon Gulf oil spill
iJobs Gadgets & Tech
Negotiable: Recruitment Genius: This role's responsibility also include operat...
£22000 - £24000 per annum: Recruitment Genius: This Microsoft Gold Partner for...
£20000 - £30000 per annum: Recruitment Genius: Are you looking for a job where...
Negotiable: Recruitment Genius: This is a great opportunity to join a medium s...