: Researchers say some targets correlate with cities hit by Iranian missile strikes
Suspected Iran-linked threat actors are conducting password-spraying attacks against hundreds of organizations, primarily Middle Eastern municipalities, in campaigns that security researchers believe may have been aimed at supporting bomb-damage assessment following missile strikes.
that the attackers used multiple source IP addresses to target numerous Microsoft 365 accounts, affecting more than 300 organizations in Israel and more than 25 in the United Arab Emirates. While most of the password spraying hit these two Middle Eastern countries, the researchers tracked similar activity from the same attacker against a"limited number" of targets in the US, Europe, and Saudi Arabia.While Israel's municipal sector bore the brunt of the password-spraying attacks, other industries, including technology , transportation and logistics , healthcare , and manufacturing , were also targeted. Municipalities play a major role in responding to missile-related physical damage, and Check Point also noted some correlation between the orgs targeted with password spraying and."This suggests the campaign was likely intended to support kinetic operations and Bombing Damage Assessment efforts," the researchers wrote. The first stage in the attack - password spraying - involves blasting hundreds of organizations' Microsoft accounts with weak passwords. The attackers perform these scans using frequently changed Tor exit nodes with a User-Agent that masquerades as Internet Explorer 10 : Mozilla/5.0 . Once the attackers find credentials that work, they log in from multiple VPN IP addresses geolocated in Israel to evade restrictions based on geography.'Hundreds' of Iranian hacking attempts have hit surveillance cameras since the missile strikes"Analysis of M365 logs suggest similarities to Gray Sandstorm, including the use of red-team tools to conduct these attacks via Tor exit nodes," the threat hunters wrote, adding that the attacker also used commercial VPN nodes hosted at AS35758 , infrastructure that has appeared in recent suspected Iran-linked cyber operations in the Middle East.Gmail celebrates 22 years by finally letting users change their addressesUnlocking the hidden power of unstructured data with AIStarlink sprays debris into orbit following another satellite 'anomaly'ServiceNow allegedly says salesman 'overachieved' and is not entitled to comp The 13-year sales vet closed two deals worth $27 million, but ServiceNow has “nullified” his compensation saying he “overachieved” his quota.
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Iran war latest: Trump says he wants Iran's oil and could seize Kharg IslandDonald Trump has raised the idea of US forces seizing Iran's Kharg Island, its main oil terminal, as more US forces arrive in the Middle East. Meanwhile, Israel says it's expanding its 'buffer zone' in southern Lebanon. Follow the latest below - and listen to Cheat Sheet as you scroll.
Read more »
Trump Considers Seizing Iranian Oil and Invading Kharg Island, Amidst Rising Mideast TensionsDonald Trump expresses interest in seizing Iranian oil and invading Kharg Island, as the number of US troops in the Middle East swells, raising concerns about escalating tensions.
Read more »
Trump Considers Seizing Iranian Fuel Hub Amid Escalating TensionsPresident Trump contemplates seizing Iran's Kharg Island fuel hub as tensions escalate. US officials prepare for a ground operation, while Iran threatens retaliation. Experts warn of a 'major and risky' operation, highlighting the vulnerability of US troops and potential consequences for the region. Trump's claims about a more 'reasonable' leadership in Iran are questioned, and the potential impact of such actions on Iran's oil lifeline and US allies is discussed.
Read more »
Mount Sinai researchers identify a highly prevalent recessive neurodevelopmental disorderResearchers at the Icahn School of Medicine at Mount Sinai in New York have identified and described a previously unknown recessive neurodevelopmental disorder (NDD) that appears to be the most prevalent ever discovered.
Read more »
The little-known bases ready to defend the UK from Iranian missilesThey could achieve a range of 4,000km, placing countries in Europe, Asia and Africa at risk
Read more »
US Strikes Iranian Ammunition Depot, Iranian Drone Hits Kuwaiti Oil Tanker Amidst Rising Regional TensionsThe US launched air strikes on an Iranian ammunition depot, while an Iranian drone targeted a Kuwaiti oil tanker near the Strait of Hormuz, escalating tensions. The events come amid calls from Gulf allies for continued military action against Iran.
Read more »