Hackers targeting and stealing billions from Iranian citizens in texting scheme




  • In World
  • 2021-12-01 11:00:14Z
  • By The Hill
 


Financially motivated hackers likely based in Iran are successfully targeting and stealing billions in currency from Iranian civilians through a texting campaign, new research released Wednesday found.

Israeli-American cybersecurity company Check Point Research found evidence that tens of thousands of Iranians had been targeted in the scheme, which involved the hackers sending texts to Android users that impersonated branches of the Iranian government.

The texts prompted victims to download malicious applications that then steal credit card information and two-factor authentication codes, with the infected devices then used as bots by the hackers to spread the campaign further. The average victim lost between $1,000 and $2,000, and the Check Point researchers found that the stolen data was easily accessible online to third parties.

"The general population of Iran is in a growing situation where cyber attacks significantly impact day-to-day lives," Alexandra Gofman, the Threat Intelligence Team Leader at Check Point Software, said in a quote provided to The Hill. "We believe these recent cyber attacks to be financially motivated and a form of pure cyber crime. We suspect the threat actors involved are likely from Iran itself."

The new research was released months after Check Point Research published separate findings tying cyberattacks on Iran's railroad system and its Ministry of Roads and Urbanization to a hacking group known as "Indra," which Check Point concluded was likely not controlled by a nation state and was opposed to the Iranian regime.

Gofman noted that while the new findings were not directly connected to the Indra hacking group, both incidents highlighted the "significant damage" cyberattacks could do to the Iranian population.

"The velocity and spread of these cyber attacks are unprecedented. It's an example of a monetarily-successful campaign aimed at the general public," Gofman stressed. "The campaign exploits social engineering and causes major financial loss to its victims, despite the low quality and technical simplicity of its tools."

The report from Check Point noted that while there are steps to take that can prevent Android devices from being compromised, such as only downloading applications on official stores, it was critical to raise awareness about SMS-phishing threats among the public.

"Although these specific campaigns are widespread in Iran, they can take place in any other part of the world," Gofman said. "I think it's important to raise awareness of social engineering schemes that are employed by malicious actors."

COMMENTS

More Related News

Half of global cyber defence investment has been in Israel - PM Bennett
Half of global cyber defence investment has been in Israel - PM Bennett
  • US
  • 2022-01-18 10:37:16Z

Around half of global cyber defence investment in past few years has been in Israel, Prime Minister Naftali Bennett said on Tuesday. Speaking by video to...

Iran Says Oil Sales Have Had a
Iran Says Oil Sales Have Had a 'Staggering' Rise Over Past Year

(Bloomberg) -- Sales of Iranian crude oil, gas condensates and petrochemical products have risen dramatically in the past 10 months, the country's oil...

Leave a Comment

Your email address will not be published. Required fields are marked with *

Cancel reply

Comments

Top News: World