Rantburg

Today's Front Page   View All of Thu 04/25/2024 View Wed 04/24/2024 View Tue 04/23/2024 View Mon 04/22/2024 View Sun 04/21/2024 View Sat 04/20/2024 View Fri 04/19/2024
2021-07-16 Cyber
Facebook: Iran-based spies targeted US, European defense workers
[IsraelTimes] Social media firm’s cyber-espionage investigations chief says some malicious code used in ’well-resourced operation’ was developed by company with ties to Revolutionary Guards

Facebook said on Thursday that it has disrupted an Iran-based espionage operation targeting defense and aerospace workers in Europa
...the land mass occupying the space between the English Channel and the Urals, also known as Moslem Lebensraum...
and the United States.

Fake accounts posing as company job recruiters or employees were used to dupe targets, according to head of cyber espionage investigations Mike Dvilyanski.

"This effort was highly targeted," Dvilyanski said in a telephone briefing.

"It is hard for us to know how successful this campaign was, but it had all the hallmarks of a well-resourced operation."

Some of the malicious code used in the cyber spying campaign was developed by the Mahak Rayan Afraz tech company in Tehran, who have ties to the Islamic Revolutionary Guard Corps, according to Dvilyanski.

Facebook took down 200 accounts it said were used to dupe defense or aerospace industry workers into connecting outside the social network, through techniques such as compromised emails or bogus job websites.

The group referred to as "Tortoiseshell" had focused its activities in the Middle East until last year, when it primarily took aim at the United States, according to Dvilyanski.

"This group used various malicious tactics to identify its targets and infect their devices with malware to enable espionage," said Facebook director of threat disruption David Agranovich.

"Our platform was one of the elements of the much broader cross-platform cyber-espionage operation, and its activity on Facebook manifested primarily in social engineering and driving people off-platform."

Malware slipped onto devices of victims was designed to glean information including log-in credentials to email or social media, according to Dvilyanski.

Facebook said it appeared fewer than 200 users may have fallen for the ruse, and that those people have been notified of the deception.

Facebook also blocked some of the booby-trapped website links from being shared within the social network, according to executives.

The tech giant added that it shared findings with internet industry peers and law enforcement.

"We were only part of this campaign, and we are taking action on our platform," Dvilyanski said.
Posted by trailing wife 2021-07-16 00:00|| || Front Page|| [8 views ]  Top
 File under: Govt of Iran 

21:00 Elmaper+McGurque1612
20:12 swksvolFF
20:09 swksvolFF
19:22 Frank G
18:57 swksvolFF
18:42 magpie
17:05 DarthVader
17:02 Procopius2k
16:25 borgboy
16:20 alanc
16:17 alanc
15:12 Skidmark
15:10 Skidmark
15:08 Tom
15:02 Angealing+B.+Hayes4677
14:23 Unung the Furry2677
14:11 Unung the Furry2677
14:06 Unung the Furry2677
13:29 DarthVader
13:21 Airandee
13:19 Airandee
13:15 swksvolFF
13:06 swksvolFF
13:04 NoMoreBS









Paypal:
Google
Search WWW Search rantburg.com