CyberSecurityBoard
Sponsor Register Login

Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft

In the context of the Israel-Hamas conflict, Iran's offensive operations against Israel were initially reactive and chaotic, but quickly ramped up and expanded in scope, Microsoft says.
Immediately after October 7, Iranian threat actors were seen 'leaking' old material and using pre-existing access to networks, with their rather chaotic activities suggesting little or no coordination with Hamas, despite early claims by Iranian state media.
Iran-aligned adversaries quickly ramped up their cyberattacks and influence operations in support of Hamas, with 14 groups engaging in anti-Israel cyber operations two weeks into the armed war, up from only nine in the beginning.
As the war progressed, so did Iran's offensive cyber ops, and by January 2024 expanded to targeting Albania, Bahrain, and the US as well.
According to Microsoft, the collaboration between the involved threat actors also increased, resulting in higher effectiveness.
Two weeks after the beginning of the war, the same organizations and military bases in Israel were being targeted by multiple Iranian hacking groups.
The number of cyber-enabled influence operations reached 11 in October 2023, nearly double than the previous high of six in November 2022.
These included false claims of cyberattacks against an Israeli power plant by a group called Cyber Avengers, of hacked security cameras, and of ransomed security cameras at Nevatim Air Force Base.
Starting late November, the Iranian threat actors expanded their influence operations to countries believed to be aiding Israel, targeting organizations in Albania, Bahrain, and the US. The observed Iranian cyber operations focused on destabilization through exaggeration, involved retaliation to Israeli attacks, and aimed to undermine Israeli security and intimidate the country's citizens and international supporters.
Microsoft also observed Iranian threat actors impersonating their enemies and their friends, and increasingly using bulk text message and email campaigns to enhance the effect of their operations.
Fueled by the Israel-Hamas war, Iran nation-state cyber operations targeting Israel increased 43%. The activity is expected to become more targeted, more collaborative, and more destructive.


This Cyber News was published on www.securityweek.com. Publication date: Thu, 08 Feb 2024 16:13:04 +0000


Cyber News related to Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft

Iran Ramps Up Cyberattacks on Israel Amid Hamas Conflict: Microsoft - In the context of the Israel-Hamas conflict, Iran's offensive operations against Israel were initially reactive and chaotic, but quickly ramped up and expanded in scope, Microsoft says. Immediately after October 7, Iranian threat actors were seen ...
4 months ago Securityweek.com
Iran-Israel Cyber War Goes Global - Iran's cyber conflict with Israel has reached global proportions, with cyberattacks against businesses and government agencies on other continents causing arguably as much ruckus as those in Israel itself. While US military bases and international ...
4 months ago Darkreading.com
Ransomware Attacks Strike South Africa, Decline in UAE - Cybercrime - and especially ransomware - traditionally have had an uneven impact across the Middle East and Africa, yet recent data suggests that ongoing geopolitical conflicts will likely raise the overall level of cyberattacks across the regions. ...
7 months ago Darkreading.com
Israel Battles Spike in Wartime Hacktivist, OT Cyberattacks - For Israel, 2023 will be remembered as the beginning of the war in Gaza after the devastating Hamas terror attacks on Oct. 7. The conflict spread to the cyber realm, with hacktivists on both sides declaring their intentions to conduct cyberattacks. ...
6 months ago Darkreading.com
The Dangerous Mystery of Hamas' Missing 'Suicide Drones' - Faced with the looming possibility that Hamas could leverage some of the same techniques, Israel began running drills, practicing with fighter jets to intercept UAVs. In February 2014, it announced a prototype of a new air defense system: The "Iron ...
7 months ago Wired.com
Iranian Phishing Campaign Targets Israel-Hamas War Experts - Iran-linked threat actors are targeting high-profile researchers working on the Israel-Hamas conflict via a sophisticated social engineering campaign, according to Microsoft Threat Intelligence. The threat actor Mint Sandstorm, which has ties to ...
5 months ago Infosecurity-magazine.com
Iran-linked hackers claim to leak troves of documents from Israeli hospital - A hacker group allegedly linked to Iran claimed to have leaked thousands of medical records from an Israeli hospital, including those of Israeli soldiers. In a cyberattack on Ziv Medical Center in the city of Safed, near the border with Syria and ...
6 months ago Therecord.media
Hacktivists say they shut down Iran's gasoline pumps The Register - Hacktivists reportedly disrupted services at about 70 percent of Iran's gas stations in a politically motivated cyberattack. Iran's oil minister Javad Owji confirmed on Monday the IT systems of the nation's petrol stations had been attacked as ...
6 months ago Go.theregister.com
Hacktivists say they shut down Iran's gasoline pumps The Register - Hacktivists reportedly disrupted services at about 70 percent of Iran's gas stations in a politically motivated cyberattack. Iran's oil minister Javad Owji confirmed on Monday the IT systems of the nation's petrol stations had been attacked as ...
6 months ago Packetstormsecurity.com
Top White House cyber aide says recent Iran hack on water system is call to tighten cybersecurity - WASHINGTON - A top White House national security official said recent cyber attacks by Iranian hackers on U.S. water authorities - as well as a separate spate of ransomware attacks on the health care industry - should be seen as a call to action by ...
6 months ago Apnews.com
Top White House Cyber Aide Says Recent Iran Hack on Water System Is Call to Tighten Cybersecurity - A top White House national security official said recent cyber attacks by Iranian hackers on US water authorities - as well as a separate spate of ransomware attacks on the health care industry - should be seen as a call to action by utilities and ...
6 months ago Securityweek.com
Meta Facebook, Instagram Iran's Supreme Leader - Iran's Supreme Leader, Ayatollah Ali Khamenei, has his Facebook and Instagram accounts permanently removed by Meta. Meta Platforms has stepped into the ongoing geopolitical tensions between the United States and Iran, with a notable move against that ...
4 months ago Silicon.co.uk
How Israel Is Defending Against Iran's Drone Attack - On Saturday, Iran launched more than 200 drones and cruise missiles at Israel. As the drones made their way across the Middle East en route to their target, Israel has invoked a number of defense systems to impede their progress. The Iron Dome, ...
2 months ago Wired.com
Hamas Cyberattacks Ceased After the Oct. 7 Terror Attack. But Why? - Cyber threat actors linked with Hamas have seemingly ceased activity ever since the terrorist attack in Israel on Oct. 7, confounding experts. Russia's invasion of Ukraine - preceded and supported by historic waves of cyber destruction, espionage, ...
4 months ago Darkreading.com
Cyberattacks Intensify on Israeli and Palestinian Human Rights Groups - Hackers have stepped up efforts to take down the websites of Israeli and Palestinian humanitarian groups since Hamas attacked Israel on Oct. 7.The spike in cyberattacks on Israeli human rights organization B'Tselem has reached levels similar to ...
7 months ago Wsj.com
Congressmen Ask DOJ to Investigate Water Utility Hack, Warning It Could Happen Anywhere - Three members of Congress have asked the U.S. Justice Department to investigate how foreign hackers breached a water authority near Pittsburgh, prompting the nation's top cyberdefense agency to warn other water and sewage-treatment utilities that ...
7 months ago Securityweek.com
Microsoft Incident Response lessons on preventing cloud identity compromise - Microsoft Incident Response is often engaged in cases where organizations have lost control of their Microsoft Entra ID tenant, due to a combination of misconfiguration, administrative oversight, exclusions to security policies, or insufficient ...
6 months ago Microsoft.com
In Cyberattacks, Iran Shows Signs of Improved Hacking Capabilities - You have a preview view of this article while we are checking your access. When we have confirmed access, the full article content will load. A monthslong hacking campaign targeted the governments of regional rivals, including Israel, and marked a ...
7 months ago Nytimes.com
Pro-Palestinian operation claims dozens of data breaches against Israeli firms - Pro-Palestinian hackers say they breached dozens of Israeli entities amid the ongoing war in Gaza, which has also extended into cyberspace. A group calling itself Cyber Toufan said it launched an operation against Israel at the end of November, ...
6 months ago Therecord.media
Israel, Czech Republic Reinforce Cyber Partnership Amid Hamas War - The director general of the Israel National Cyber Directorate has signed a memorandum with the Czech Republic National Cyber and Information Security Agency to formally strengthen cybersecurity relations between the two countries. Israel's Gaby ...
5 months ago Darkreading.com
Iranian 'Seedworm' Cyber Spies Target African Telcos & ISPs - An Iran-backed cyberespionage group is actively targeting telcos in North and East Africa. According to security researchers at Symantec, the latest cyberattacks by the advanced persistent threat it calls Seedworm are targeting ...
6 months ago Darkreading.com
'Cyber Toufan' Hacktivists Leaked 100-Plus Israeli Orgs in One Month - Since mid-November, one Iran-linked hacktivist group has managed to breach more than 100 organizations in and around Israel, wiping servers, leaking sensitive data, and spreading follow-on attacks down the supply chain. Since October 7, anti-Israel ...
5 months ago Darkreading.com
ICS at Multiple US Water Facilities Targeted by Hackers Affiliated With Iranian Government - The hackers behind recent cyberattacks targeting industrial control systems at water facilities in the US are affiliated with the Iranian government, according to security agencies in the United States and Israel. The FBI, CISA, the NSA, the EPA and ...
6 months ago Securityweek.com
Iran Threatens Israel's Critical Infrastructure With 'Polonium' Proxy - Israel's critical infrastructure is under threat from an Iranian proxy hacking group operating in Lebanon. Iran's partnership with armed militant groups throughout the Middle East is well documented. According to Microsoft, in the spring of 2022 ...
6 months ago Darkreading.com
Anti-Hezbollah Groups Hack Beirut Airport Screens - Beirut's international airport faced a cyber-attack on Sunday, reportedly orchestrated by domestic anti-Hezbollah groups. The attack comes amid escalating tensions between Hezbollah and the Israeli military. According to a press release published on ...
5 months ago Infosecurity-magazine.com

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)