Security News > 2021 > July > Facebook: Iranian Hackers Target Military, Aerospace Entities in the US
Recent activity that Facebook associated with the group focused on military personnel, defense organizations, and aerospace entities primarily in the United States and, to a lesser extent, the U.K. and Europe, showing an escalation of the group's cyberespionage activities.
Today, Facebook revealed that it took action against similar attacks from the Iranian hacking group, which leveraged its online platform to lure victims into downloading malware.
The activity observed bfy Facebook was part of a wider, cross-platform cyber espionage operation that leveraged the social media platform for social engineering rather than direct malware delivery.
The hackers were posing as recruiters and employees of defense and aerospace companies, as journalists, or as employees of NGOs and organizations in hospitality, medicine, and airline industries.
The hackers also deployed multiple domains tailored to specific targets in the aerospace and defense industries, including recruiting portals, a website that spoofed a legitimate US Department of Labor job search site, and domains that spoofed major e-mail providers and URL-shortening services.
One of the malware used by the group is believed to have been developed by Tehran-based IT company Mahak Rayan Afraz, which appears to be tied to the Islamic Revolutionary Guard Corps, Facebook also notes.
News URL
Related news
- US says Chinese hackers breached multiple telecom providers (source)
- US warns of last-minute Iranian and Russian election influence ops (source)
- Iranian Hackers Use "Dream Job" Lures to Deploy SnailResin Malware in Aerospace Attacks (source)
- US indicts Snowflake hackers who extorted $2.5 million from 3 victims (source)
- Hacker gets 10 years in prison for extorting US healthcare provider (source)
- Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations (source)
- Hackers breach US firm over Wi-Fi from Russia in 'Nearest Neighbor Attack' (source)
- Faraway Russian hackers breached US organization via Wi-Fi (source)
- US shares tips to block hackers behind recent telecom breaches (source)
- US military grounds entire Osprey tiltrotor fleet over safety concerns (source)