Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

Google Warns of Password-stealing Campaign in Iran

SAN FRANCISCO – Google on Wednesday said that it has been battling what appeared to be politically targeted efforts to steal the passwords of tens of thousands of account holders in Iran.

SAN FRANCISCO – Google on Wednesday said that it has been battling what appeared to be politically targeted efforts to steal the passwords of tens of thousands of account holders in Iran.

“The timing and targeting of the campaigns suggest that the attacks are politically motivated in connection with the Iranian presidential election on Friday,” Google vice president of security engineering Eric Grosse said in a blog post.

“These campaigns, which originate from within Iran, represent a significant jump in the overall volume of phishing activity in the region.”

For nearly three weeks, California-based Google has been fighting “phishing” email messages crafted to trick recipients into clicking on links leading to phony account maintenance web pages that steal user names and passwords.

The ruse was “aimed at compromising the accounts owned by tens of thousands of Iranian users,” Grosse said.

There were indications that the same culprits were involved in a cyberattack targeting Iranians about two years ago, according to Google.

“In this case, the phishing technique we detected is more routine; users receive an email containing a link to a web page that purports to provide a way to perform account maintenance,” Grosse said.

“If a user clicks the link, they see a fake Google sign-in page that will steal their username and password.”

Google policy is to notify targets of state-sponsored attacks or other suspicious activity, along with working internally to thwart hackers, according to Grosse.

“Especially if you are in Iran, we encourage you to take extra steps to protect your account,” Grosse said.

His suggestions included opting for two-factor verification that requires information other than a password to get into an account and checking that website addresses are legitimate.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

A digital ad fraud scheme dubbed "VastFlux" spoofed over 1,700 apps and peaked at 12 billion ad requests per day before being shut down.

Cybercrime

Cybercriminals earned significantly less from ransomware attacks in 2022 compared to 2021 as victims are increasingly refusing to pay ransom demands.

Application Security

PayPal is alerting roughly 35,000 individuals that their accounts have been targeted in a credential stuffing campaign.