Shillong, September 17: Microsoft analysts have revealed that Iranian state-backed hackers have been actively targeting satellite, defense, and pharmaceutical companies worldwide.
Their primary objective appears to be gathering intelligence and potentially bolstering domestic production in these industries, particularly in the face of heavy US sanctions.
As per IANS, these hackers have successfully infiltrated multiple organizations since February, utilizing a relatively simple hacking technique. Microsoft’s findings underscore the determination of Tehran’s hacking teams.
US sanctions against Iran have severely restricted its access to military hardware and deterred Western companies from providing medical supplies to the country. Consequently, Iran has resorted to seeking trade secrets held by foreign firms, as reported by CNN.
The choice of industries targeted by these hackers aligns with Iran’s potential need to establish domestic production capabilities due to the challenges posed by sanctions. While the precise motivation for targeting satellite, defense, and pharmaceutical companies remains unknown, the heightened incentives created by the sanctions strongly suggest that Iran is actively pursuing valuable intelligence.
According to Microsoft analysts, the hackers have been gaining access to email accounts through bulk attempts at guessing common passwords. This technique, although simple, has proven highly effective.
In some cases, intruders stole data from victim networks, while in others, they quietly monitored email accounts, largely going undetected due to the straightforward yet efficient nature of their approach.
Iran has a history of denying hacking allegations, and the government has not yet responded to this latest report.
Microsoft has not disclosed the specific US companies that were targeted, and the US National Security Agency has not commented on the matter.
Meanwhile, in a separate incident, China-backed hackers managed to steal a digital consumer key from Microsoft, granting them unrestricted access to US government emails. Microsoft has detailed how these cybercriminals executed one of the largest cyber heists in corporate and government circles.