News Iranian hackers attacked more than 100 participants at two international conferences


xanix

Advanced
Joined
20.10.20
Messages
110
Reaction score
894
Points
93
The Cybercrime group Phosphorus (also known as APT35) sent fake emails to former government officials, scientists, heads of major organizations and politicians, posing as the organizers of the Munich security conference and the Think 20 (T20) summit in Saudi Arabia. According to Microsoft specialists, the emails were sent to steal passwords and other confidential data of victims.

Microsoft did not comment on what the purpose of the criminal operation was, but Tom Burt, Microsoft's Vice President of security, said the attacks were carried out for "intelligence gathering purposes."

"The attacks compromised several victims, including former ambassadors and other senior political experts who help shape global programs and foreign policy in their countries. We contacted the conference organizers and warned them about this threat, " Bert explained.

The attackers sent emails written in "perfect English" with an invitation to the conference. As soon as the victim accepted the invitation, hackers tried to trick the user into entering the email password on a fake login page. In this way, attackers gained access to the victim's mailbox and contacts.
 
Top Bottom