Friday, November 12, 2021

FBI Warns US Companies About Iranian Hackers

Iranian Hackers have searched Cybercriminal Websites for Sensitive Data Stolen from American and Foreign Organizations, that could be useful in Future efforts to Hack those Organizations, the FBI said in an Advisory sent to US Companies.

The Iranian Hackers have taken an interest in Dark-Web Forums, where Scammers Leak Information on their Victims, such as Stolen Emails and Network Configurations, according to the November 8th Advisory.

The FBI is concerned that the Iranian Hacking Group could use that Information to Plot ways into US Corporate Networks in the Future.

The FBI Warning underscores how various Computer Operatives, some motivated by Espionage, or other Government Requirements, others by Profit, can Exploit the Cybercriminal Underworld for their own purposes.

While the Biden Administration wages a Crackdown against Ransomware, some Criminal Groups continue to Publish Data about their Victims, to Pressure them into Paying Money to Unlock their Computers.

US joins International Cybersecurity Partnership, that Trump snubbed.

"If your organization's information was previously compromised, the FBI recommends considering how any data exfiltrated could be leveraged to conduct further malicious activity against your network." says the FBI Bulletin, which Advises Companies on how to prepare for follow-on Hacks.

The Bureau regularly sends Private Alerts to US Organizations about ongoing Hacking Threats.

It is Unclear which Iranian Hacking Group is behind the Activity. The FBI did Not identify the Hackers by name, or say if they are Linked to the Iranian Government.

Adam Meyers, Senior Vice President of Intelligence, at Security Firm CrowdStrike, said that Iranian Government-linked Hackers have increasingly dabbled in Cybercriminal Activity, such as Ransomware, as a means of Blurring the Lines between State and Non-State Cyber Operations.

US seizes $6 Million in Ransom Payments and Charges Ukrainian over Major Cyberattack.

"It is well within (Iranian groups') modus operandi to purchase access to networks held by a criminal group if it serves their interests," Meyers said.

One suspected IranianGgroup posed as Ransomware Operators while Conducting Disruptive Hacks of Israeli Organizations this year, according to SentinelOne, another Cybersecurity Firm.

While Analysts often List Iran, after Russia and China, in terms of Cyber Capabilities, Tehran still has an array of Hacking Teams, it can draw on, to try to Infiltrate US Corporate and Government Networks.

US Intelligence Officials blamed Iranian Hackers, for posing as the Proud Boys, a Far-Right US Group, and sending Threatening Emails to American Voters, ahead of the 2020 Election.

NYC Wins When Everyone Can Vote! Michael H. Drucker

No comments: