{"id":63015,"date":"2018-08-02T17:05:43","date_gmt":"2018-08-02T15:05:43","guid":{"rendered":"http:\/\/www.reunion68.se\/?p=63015"},"modified":"2018-08-02T07:38:45","modified_gmt":"2018-08-02T05:38:45","slug":"05-05-30","status":"publish","type":"post","link":"https:\/\/www.reunion68.se\/?p=63015","title":{"rendered":"IRAN HACKS ISRAEL IN CYBER ATTACK"},"content":{"rendered":"
\"\"<\/a>IRAN HACKS ISRAEL IN CYBER ATTACK<\/a><\/strong><\/span><\/h5>\n

SANDEEP SINGH GREWAL\/GULF DAILY NEWS<\/strong><\/span><\/p>\n

\n

The group, dubbed “Leafminer,” has attacked networks in Saudi Arabia, the UAE, Qatar, Kuwait, Bahrain, Egypt, Israel and Afghanistan, according to a report issued by US cyber security firm Symantec.<\/strong><\/p>\n

Hacker. (photo credit: INGIMAGE \/ ASAP)<\/em><\/span><\/p>\n

Manama, Bahrain (Tribune News Service) – A group of \u201chighly active\u201d hackers based in Iran have been found to be trying to steal vital information from governments in the Middle East.<\/span><\/p>\n

The group, dubbed “Leafminer,” has attacked networks in Saudi Arabia, the UAE, Qatar, Kuwait, Bahrain, Egypt, Israel and Afghanistan, according to a report issued by US cyber security firm Symantec.<\/span><\/p>\n

However, an Information and eGovernment Authority (iGA) spokesman told the GDN yesterday \u201cno indication was found up until now that Leafminer targeted the portal or any systems managed by IGA.\u201d<\/span><\/p>\n

The cyber espionage group\u2019s targets includes the \u201cenergy, telecommunications, financial services, transportation and government\u201d sectors.<\/span><\/p>\n

Means of intrusion used to infiltrate target networks consisted of infecting malware on websites often visited by the users, also known as watering hole style attacks, and using brute-force login attempts, which features trying numerous passwords with the hope of eventually breaching the network.<\/span><\/p>\n

\u201cSymantec has uncovered the operations of a threat actor named Leafminer that is targeting a broad list of government organizations and business verticals in various regions in the Middle East,\u201d stated a threat intelligence report by Symantec.<\/span><\/p>\n

Operations reportedly began in early 2017 but has increased since the end of last year.<\/span><\/p>\n

\u201cLeafminer is a highly active group, responsible for targeting a range of organizations across the Middle East.<\/span><\/p>\n

\u201cThe group appears to be based in Iran and seems to be eager to learn from, and capitalize on, tools and techniques used by more advanced threat actors.\u201d<\/span><\/p>\n

The report also said an investigation into Leafminer revealed a list, written in Farsi, of 809 systems targeted by the hackers.<\/span><\/p>\n

\u201cTargeted regions included in the list are Saudi Arabia, the UAE, Qatar, Kuwait, Bahrain, Egypt, Israel, and Afghanistan.\u201d<\/span><\/p>\n

The report said the attackers were looking for e-mail data, files and database servers on their target systems in financial, government, energy, airlines, construction, telecommunication and other sectors in the region.<\/span><\/p>\n

Symantec said it was able to identify Leafminer after discovering a compromised web server that was used in several different attacks.<\/span><\/p>\n

\u201cIt [the cyber espionage group] made a major blunder in leaving a staging server publicly accessible, exposing the group\u2019s entire arsenal of tools.<\/span><\/p>\n

\u201cThat one misstep provided us with a valuable trove of intelligence to help us better defend our customers against further Leafminer attacks.\u201d<\/span><\/p>\n

IGA said, in a statement to the GDN yesterday, that part of its job was to monitor any report issued by security vendors such as Symantec regarding any threat actors targeting the region.<\/span><\/p>\n

\u201cThe team then conducts further investigation to look for any sign of indication related to the threat actors,\u201d it said.<\/span><\/p>\n

\u201cIf an indication is detected, the case is reported to IGA\u2019s cybersecurity incident management team to take the needful action to approach the incident.<\/span><\/p>\n

\u201cWith regards to the Leafminer cyber espionage group, no indication was found up till now that Leafminer targeted the portal or any systems managed by IGA.\u201d<\/span><\/p>\n

IGA officials previously said that around 27,000 attacks on government systems were managed last year, with majority of them originating from countries in the east, namely Iran.<\/span><\/p>\n

Meanwhile, a spokesman from Bahrain-based security firm CTM360 said it was aware of Leafminer and urged companies and individuals to install anti-virus software as well as use complex passwords.<\/span><\/p>\n

\u201cLeafminer targeted government organizations and businesses in the Middle East by using the existing available threats out there,\u201d said the spokesman.<\/span><\/p>\n

\u201cThe group studied reports published by different security firms about malwares or threats, and fix the loopholes mentioned in those papers for an advanced malware attack.\u201d<\/span><\/p>\n

\n
\n
\n
\n

Zawarto\u015b\u0107 publikowanych artyku\u0142\u00f3w i materia\u0142\u00f3w nie reprezentuje pogl\u0105d\u00f3w ani opinii Reunion’68,<\/em>
\nani te\u017c webmastera Blogu Reunion’68, chyba ze jest to wyra\u017anie zaznaczone.
\nTwoje uwagi, linki, w\u0142asne artyku\u0142y lub wiadomo\u015bci prze\u015blij na adres:
\n<\/em>webmaster@reunion68.com<\/span><\/a><\/em><\/strong><\/span><\/p>\n<\/div>\n<\/div>\n<\/div>\n

 <\/p>\n

\n","protected":false},"excerpt":{"rendered":"

IRAN HACKS ISRAEL IN CYBER ATTACK SANDEEP SINGH GREWAL\/GULF DAILY NEWS The group, dubbed “Leafminer,” has attacked networks in Saudi Arabia, the UAE, Qatar, Kuwait, Bahrain, Egypt, Israel and Afghanistan, according to a report issued by US cyber security firm Symantec. Hacker. (photo credit: INGIMAGE \/ ASAP) Manama, Bahrain (Tribune News Service) – A group […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":[],"categories":[3],"tags":[26,24],"_links":{"self":[{"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/posts\/63015"}],"collection":[{"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=63015"}],"version-history":[{"count":4,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/posts\/63015\/revisions"}],"predecessor-version":[{"id":63027,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=\/wp\/v2\/posts\/63015\/revisions\/63027"}],"wp:attachment":[{"href":"https:\/\/www.reunion68.se\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=63015"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=63015"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.reunion68.se\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=63015"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}