Iranian hackers conducted 3 year campaign trying to spy on US leaders over Facebook
'Elaborate' campaign targeted politicians and military personnel to trick them into giving up log-in credentials and downloading malware
Thursday 29 May 2014
Iranian hackers created a fake news website and a string of fake Facebook profiles as part of a three-year campaign to spy on US politicians and military officers, a new report has claimed.
Security firm iSight Partners say that fake social media personas were created by the hackers with complex backgrounds. These were used to contact targets, sending them legitimate content before trying to gain access to government and corporate networks through the use of malware.
The hackers also "intimated their interest in specific defence technology, as well as military and diplomat information by their targeting" said the company.
The operation’s targets reportedly included ambassadors, a four-star Navy admiral and lawmakers, and personnel from countries including Britain, Syria, Iraq and Afghanistan.
iSight has not disclosed the identity of any victims nor if any data has been stolen, although the firm’s executive vice president Tiffany Jones said “if it's been going on for so long, clearly they have had success.”
As part of the campaign the hackers set up a fake news site called NewsOnAir.org which republished articles from the BBC, Reuters and the Associated Press under the names of six fake journalists.
A screenshot of the fake news site. Credit: iSight
These personas – along with eight faked defence contractors – were given profiles on Facebook and other social media networks that were then used to contact targets in the US and other countries.
iSight said that this type of “social engineering” campaign was the most elaborate by any nation to be uncovered to date and that the perpetrators wanted to stay “under the radar.”
“This campaign is not loud. It is low and slow," said Jones. "They want to be stealth.”
To build credibility the fake personas attempted to befriend victims’ friends, colleagues, relatives and classmates, and would initiate contact by sharing legitimate content before sending links containing malware or requesting network credentials.
iSight said that it has alerted the FBI as well as overseas authorities and some victims. The FBI has not issued a statement on the report, although Facebook have said that they discovered the hacking group while investigating suspicious activity on the site.
A Facebook spokesperson told Reuters: “We removed all of the offending profiles we found to be associated with the fake NewsOnAir organization and we have used this case to further refine our systems that catch fake accounts.”
Earlier this month another US cyber security firm FireEye said that it had detected new activity from a hacking group believed to be operating out of Iran named the Ajax Security Team (AST).
FireEye said that the AST had been targeting defence organizations by coding their own malware, describing the move as “an evolution” for the country as it seeks better control political dissent and expand its “offensive cyber capacities.”
Life & Style blogs
Men in crop tops seem to be trending thanks to Kid Cudi, the social media and the catwalk
What is ALS and the Ice Bucket Challenge?
Greggs Google fail: bakery chain falls afoul of search engine's algorithms with 'unofficial' logo
Anal sex study reveals climate of 'coercion'
Is this the end of apps? New research says a third of us don't bother to download
Isis threat: Cameron wants an alliance with Iran
Scottish independence: English people overwhelmingly want Scotland to stay in the UK
Crisis? What crisis? A visiting US doctor gives the NHS a rave review
Russell Brand calls for Israel boycott: Comedian urges big businesses that 'facilitate the oppression of people in Gaza' to pull funding
Ukip MEP calls for reintroduction of death penalty on fiftieth anniversary of last deaths
Michael Brown shooting: Chaos erupts on the streets of Ferguson after autopsy shows teenager was shot six times – twice in the head
- 1 The way the police have treated Cliff Richard is completely unacceptable
- 2 Michael Brown shooting: Amnesty International sends team within US for first time as National Guard deployed
- 3 Michael Brown shooting: Ferguson police shoot and kill second young black man
- 4 James Foley 'beheaded': Isis video shows militant with British accent 'execute US journalist' – and warns Obama of more to come
- 5 Reading Festival 2014: Tesco branch replaces salad and potatoes for Jagermeister and vodka
iJobs Gadgets & Tech
£17000 - £18000 Per Annum: Clearwater People Solutions Ltd: Trainee Digital Fo...
£50000 - £60000 Per Annum + excellent company benefits: Clearwater People Solu...
£25-£30k Plus Car: Charter Selection: Major well established nationwide market...
£300 - £350 per day: Orgtel: Juniper Security Consultant London (Greater)