Iran has attacked over 50 different targets in 16 different countries. Attacks have hit Israel, South Korea, Pakistan and the U.S. Dubbed “Project Cleaver”, the hacking group has been targeting airlines, factories and military departments.
The airline attacks may have allowed Iran to hack into internal systems, making sure potential issues at check-in are removed. Considering Iran’s large terrorist activity, this could be cause for concern, allowing potential terrorists into countries.
Cylance claims the operation is much larger than other investigation units are crediting it for, and claim the state-sponsored hacking group is capable of hacking into most systems through rather normal routes.
SQL injections are the normal first-base for the hacking collective, followed by phishing emails and exposing vulnerabilities in the system. Once in, the group is capable of finding the brain of the controls and taking over the entire system.
It can all start from one employee reading a poaching message from a company, which turns out to be an email sent by the hackers to get inside the system. The phishing emails are becoming an ever more common way of gaining access to secure information for hackers.
Attacking U.S. companies is not good for business, Iran knows the risk they run by fighting against the U.S. and they may face the wrath of the U.S. hacking collective. The Iranians have already experienced this first hand, with malware infecting a nuclear system in Iran, which may have lead to an override meltdown.
That did not happen, but it is clear the U.S. is willing to fight back against governments who create corporate espionage. Iran is spending millions on its cyber warfare unit, but other countries like Russia and China continue to spend more.
No comments:
Post a Comment