Iranian Hackers Spent Three Years Quietly Attacking 2,000 U.S. Computers

They seem to be getting better and better at infiltrating U.S. systems — and intelligence officials have noticed.

National Journal
Marina Koren
May 29, 2014, 7:45 a.m.

It was the “most elab­or­ate so­cial-en­gin­eer­ing cam­paign” these se­cur­ity re­search­ers had ever seen.

A new re­port from iSight Part­ners, a Dal­las-based com­puter-se­cur­ity firm, ex­posed on Thursday a three-year cyberes­pi­on­age cam­paign car­ried out by Ir­a­ni­an hack­ers. The di­git­al at­tacks, which in­fec­ted about 2,000 U.S. per­son­al com­puters since 2011, tar­geted mem­bers of the U.S. mil­it­ary and Con­gress, as well as dip­lo­mats, lob­by­ists, and Wash­ing­ton-based journ­al­ists.

The long-term cam­paign, dubbed “News­caster” by the se­cur­ity firm, em­ployed a dozen fake so­cial-me­dia ac­counts on sites such as Face­book, Twit­ter, and Linked­In. Hack­ers sent tar­gets links that, when ac­cessed, would un­leash mal­ware. They dir­ec­ted people to fake lo­gin screens to steal their user names and pass­words. They im­per­son­ated journ­al­ists and de­fense con­tract­ors, and even set up a fake news web­site to lure vic­tims.

All signs poin­ted to Ir­an as the source. Nicole Per­l­roth writes in The New York Times:

There were many clues. The fake News­On­Air.org web­site was re­gistered in Tehran and sites that hack­ers used to de­ploy their mal­ware were also hos­ted in Ir­an. The mal­ware that the hack­ers used con­tained sev­er­al Per­sian words. The time stamps of hack­ers’ activ­ity tracked with pro­fes­sion­al work­ing hours in Tehran. They even took the day off on Ir­a­ni­an week­ends and hol­i­days.

An­oth­er tell­tale sign, re­search­ers said, was the con­tent the hack­ers pos­ted on their per­so­nas’ so­cial me­dia. In some cases, they pos­ted Ir­a­ni­an jokes to their Face­book pages. One hack­er used a Face­book page to ask fol­low­ers, “What’s kind of sanc­tion will lead to un­der­min­ing the Ir­a­ni­an na­tion?”

It’s un­clear ex­actly what in­form­a­tion these hack­ers stole. But the fact that such a highly co­ordin­ated at­tack went un­noticed for sev­er­al years sug­gests that the tech­nic­al skills of Ir­a­ni­an hack­ers, usu­ally out­done by far-su­per­i­or Chinese and Rus­si­an hack­ers, are im­prov­ing. This time last year, a wave of at­tacks tar­get­ing Amer­ic­an en­ergy com­pan­ies was traced to Ir­an. Back then, U.S. in­tel­li­gence of­fi­cials were already wor­ried about Ir­a­ni­an hack­ers’ grow­ing tal­ents.

What We're Following See More »
A DARK CLOUD OVER TRUMP?
Snowstorm Could Impact Primary Turnout
2 days ago
THE LATEST

A snowstorm is supposed to hit New Hampshire today and “linger into Primary Tuesday.” GOP consultant Ron Kaufman said lower turnout should help candidates who have spent a lot of time in the state tending to retail politicking. Donald Trump “has acknowledged that he needs to step up his ground-game, and a heavy snowfall could depress his figures relative to more organized candidates.”

Source:
IN CASE OF EMERGENCY
A Shake-Up in the Offing in the Clinton Camp?
2 days ago
THE DETAILS

Anticipating a primary loss in New Hampshire on Tuesday, Hillary and Bill Clinton “are considering staffing and strategy changes” to their campaign. Sources tell Politico that the Clintons are likely to layer over top officials with experienced talent, rather than fire their staff en masse.

Source:
THE LAST ROUND OF NEW HAMPSHIRE POLLS
Trump Is Still Ahead, but Who’s in Second?
1 days ago
THE LATEST

We may not be talking about New Hampshire primary polls for another three-and-a-half years, so here goes:

  • American Research Group’s tracking poll has Donald Trump in the lead with 30% support, followed by Marco Rubio and John Kasich tying for second place at 16%. On the Democratic side, Bernie Sanders leads Hillary Clinton 53%-41%.
  • The 7 News/UMass Lowell tracking poll has Trump way out front with 34%, followed by Rubio and Ted Cruz with 13% apiece. Among the Democrats, Sanders is in front 56%-40%.
  • A Gravis poll puts Trump ahead with 28%, followed by Kasich with 17% and Rubio with 15%.
IT’S ALL ABOUT SECOND PLACE
CNN Calls the Primary for Sanders and Trump
1 days ago
THE LATEST

Well that didn’t take long. CNN has already declared Bernie Sanders and Donald Trump the winners of the New Hampshire primary, leaving the rest of the candidates to fight for the scraps. Five minutes later, the Associated Press echoed CNN’s call.

Source:
×