Man
Professional
- Messages
- 3,093
- Reaction score
- 634
- Points
- 113
Western agencies warn of new digital deception schemes.
American, Australian and Canadian cyber experts have warned about the actions of Iranian hackers targeting critical infrastructure organizations. Among the key areas of interest of the attackers are healthcare, the public sector, IT, engineering and energy. Their goal is to gain access to the companies' networks and detailed information about the systems, which can then be sold on the black market.
Experts report that the main interest of hackers is not so much in directly causing damage as in obtaining network credentials that can later be resold. This approach in cybersecurity is called "initial access mediation". Iranian hackers collect data to grant access, while the attacks are carried out by their clients, whether they are cybercriminal groups or government agencies.
Among the most commonly used hacking methods are password guessing and "push bombing" tactics, where attackers send multiple multi-factor authentication requests in the hope that the victim will inadvertently approve one. Once they gain access, the hackers examine the network, gathering information that will help them infiltrate other related systems. The wider the access, the higher the price for its sale.
A joint recommendation from the FBI, CISA, NSA, the Canadian Security Communications Centre, the Australian Federal Police and the Australian Cyber Security Centre provides organizations with a range of tips on how to protect themselves from such attacks. However, the main minimum requirement is the use of strong passwords and the mandatory use of multi-factor authentication.
Source
American, Australian and Canadian cyber experts have warned about the actions of Iranian hackers targeting critical infrastructure organizations. Among the key areas of interest of the attackers are healthcare, the public sector, IT, engineering and energy. Their goal is to gain access to the companies' networks and detailed information about the systems, which can then be sold on the black market.
Experts report that the main interest of hackers is not so much in directly causing damage as in obtaining network credentials that can later be resold. This approach in cybersecurity is called "initial access mediation". Iranian hackers collect data to grant access, while the attacks are carried out by their clients, whether they are cybercriminal groups or government agencies.
Among the most commonly used hacking methods are password guessing and "push bombing" tactics, where attackers send multiple multi-factor authentication requests in the hope that the victim will inadvertently approve one. Once they gain access, the hackers examine the network, gathering information that will help them infiltrate other related systems. The wider the access, the higher the price for its sale.
A joint recommendation from the FBI, CISA, NSA, the Canadian Security Communications Centre, the Australian Federal Police and the Australian Cyber Security Centre provides organizations with a range of tips on how to protect themselves from such attacks. However, the main minimum requirement is the use of strong passwords and the mandatory use of multi-factor authentication.
Source
