FBI: Attackers Targeting U.S. Energy Firms

Thursday, December 18, 2014 @ 06:12 PM gHale


Iranian hacking groups are targeting energy and defense firms as well as educational institutions, the FBI said.

A FBI “flash report” offers some technical details of the hacking techniques used, along with advice about how best to prevent the damaging attacks, according to a report from Reuters. It encourages any organizations that suspect an attack to contact the FBI urgently.

RELATED STORIES
Iran Targets Critical Infrastructure
Stuxnet Loaded by Iran Double Agents
Regin: ‘Complex Software’
Updated Malware Boosts Espionage Tool

The report seems to be an extension of the research done by security firm Cylance on “Operation Cleaver,” where an attack from Iranian hacker groups targeted 50 companies in the United States, England, China, France, Germany, Canada, India, Israel, Mexico, Turkey, South Korea, Kuwait, Pakistan, Qatar, Saudi Arabia and the United Arab Emirates.

Researchers said methods of attack could include “SQL injection, spear phishing, and water-holing, all of which have been used to extract confidential information from organizations across 16 countries.”

“By exposing our intelligence on Cleaver, we hope the information we share can reveal the techniques and tools of this group, drawing global attention to attacks on critical infrastructure and preventing attacks which could endanger human lives,” said Cylance’s Chief Executive Stuart McClure.

The report highlighted the majority of the attacks came from two Tehran based IP addresses, but offered no further speculation about the source beyond that.



Leave a Reply

You must be logged in to post a comment.