SME Times is powered by   
Search News
Just in:   • India's industrial, logistics real estate sector grows 28 pc in 9 months this year  • Gold, silver hit record highs as global uncertainty fuels demand  • India emerging as global AI leader with visionary policies: FM Sitharaman  • India’s travel economy hits Rs 2.3 lakh crore, and it’s just the beginning: Gajendra Singh Shekhawat  • PM Gati Shakti stands as cornerstone in journey towards ‘Viksit Bharat’: Piyush Goyal 
Last updated: 11 Jan, 2019  

Iran.9.Thmb.jpg Iran-based group behind 'unprecedented' global hacking: FireEye

Iran.9.jpg
   Top Stories
» Gold, silver hit record highs as global uncertainty fuels demand
» India emerging as global AI leader with visionary policies: FM Sitharaman
» GST portal opens for filing annual returns GSTR-9 and GSTR-9C for FY24-25
» India’s IPO market poised to raise $20 billion in next 12 months
» PM Modi meets Keir Starmer in Mumbai for strengthening India-UK ties
IANS | 11 Jan, 2019
Iran-based cyber criminals are likely behind a sophisticated "unprecedented" hacking campaign targeting entities across the Middle East and North Africa, Europe and North America, according to US cybersecurity firm FireEye.

The researchers at FireEye have identified a wave of DNS (Domain Name System) hijacking that has affected dozens of domains belonging to government, telecommunications and internet infrastructure entities.

"While we do not currently link this activity to any tracked group, initial research suggests the actor or actors responsible have a nexus to Iran," FireEye said in a blog post on Thursday.

"Preliminary technical evidence allows us to assess with moderate confidence that this activity is conducted by persons based in Iran and that the activity aligns with Iranian government interests," researchers wrote in the blog.

The hacking campaign has targeted victims across the globe on an almost unprecedented scale, with a high degree of success.

The teams at FireEye tracked the activity for several months -- mapping and understanding the innovative tactics, techniques and procedures (TTPs) deployed by the attacker.

They also worked closely with victims, security organisations and law enforcement agencies where possible to reduce the impact of the attacks and/or prevent further compromises.

"While this campaign employs some traditional tactics, it is differentiated from other Iranian activity we have seen by leveraging DNS hijacking at scale. The attacker uses this technique for their initial foothold, which can then be exploited in a variety of ways," explained researchers.

A large number of organisations have been affected by this pattern of DNS record manipulation and fraudulent SSL (Secure Sockets Layer) certificates.

"They include telecoms and ISP providers, internet infrastructure providers, government and sensitive commercial entities," said FireEye.

This type of attack is difficult to defend against, because valuable information can be stolen, even if an attacker is never able to get direct access to an organisation's network.

"Implement multi-factor authentication on your domain's administration portal, search for SSL certificates related to your domain and revoke any malicious certificates, conduct an internal investigation to assess if attackers gained access to your environment," suggested researchers.
 
Print the Page
Add to Favorite
 
Share this on :
 

Please comment on this story:
 
Subject :
Message:
(Maximum 1500 characters)  Characters left 1500
Your name:
 

 
  Customs Exchange Rates
Currency Import Export
US Dollar
₹84.00
₹82.25
UK Pound
₹104.65
₹108.10
Euro
₹92.50
₹89.35
Japanese Yen ₹56.10 ₹54.40
As on 25 Jul, 2025
  Daily Poll
Who do you think will benefit more from the India - UK FTA in the long run?
 Indian businesses & consumers.
 UK businesses & consumers.
 Both will gain equally.
 The impact will be negligible for both.
  Commented Stories
 
 
About Us  |   Advertise with Us  
  Useful Links  |   Terms and Conditions  |   Disclaimer  |   Contact Us  
Follow Us : Facebook Twitter