Friday, March 5, 2021
  • Setup menu at Appearance » Menus and assign menu to Top Bar Navigation
Advertisement
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News
No Result
View All Result
NikolaNews
No Result
View All Result
Home Internet Security

Iranian hackers resume credential-stealing phishing attacks against universities around the world

September 11, 2019
in Internet Security
Iranian hackers resume credential-stealing phishing attacks against universities around the world
586
SHARES
3.3k
VIEWS
Share on FacebookShare on Twitter

Why we’re still losing the fight against phishing attacks
Danny Palmer explains that it’s not fair to blame users for falling victim to attacks when employers aren’t doing enough to help. Read more: https://zd.net/31Oiisg

An Iranian hacking operation has expanded a global phishing campaign that targets universities in an attempt to steal usernames and passwords.

You might also like

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

With its acquisition of Auth0, Okta goes all in on CIAM

Singapore Airlines frequent flyer members hit in third-party data security breach

Dubbed Colbalt Dickens, the campaign was initially detailed in August last year, with researchers at Secureworks blaming cyber attacks targeting universities in 14 countries on a hacking group linked to the Iranian government. The purpose of the attacks is to steal intellectual property, which can either be exploited or sold on for profit.

“This campaign is aimed at accessing academic research that can be applied for economic and other benefits, and is a direct response to sanctions and an exodus of academic talent from Iran to countries where they are able to participate in and benefit from open and collaborative academic research,” Allison Wikoff, senior security researcher at Secureworks told ZDNet.  

Nine members of the group have been indicted by the US Department of Justice for conducting cyber theft campaigns on behalf of the Iranian military – the Islamic Revolutionary Guard Corps – but that hasn’t had any impact on the hacking group’s operations, because despite these targeted attacks are still taking place.

Now the Secureworks Counter Threat Unit (CTU) has detailed new attacks by Colbalt Dickens, which took place in July and August this year. Over 60 universities in Australia, the United States, the United Kingdom, Canada, Hong Kong, and Switzerland have been targeted in a new global phishing campaign.

Like previous attacks by the group, the phishing emails are based around online library services, claiming the user needs to reactive their account by clicking a link. While previous campaigns used a URL shortener to obscure the web address of the spoofed library login page, this time the attackers are using a spoofed URL that appears to be genuine.

SEE: A winning strategy for cybersecurity (ZDNet special report) | Download the report as a PDF (TechRepublic)  

Those who click the link are directed to web page that looks very similar – or even identical – to the library resource of that university and asked to enter their login credentials, an act which provides their username and password to the attackers. To avoid arousing suspicion, the user is directed to the legitimate version of the site being spoofed after their details are entered.

To help run this latest campaign, Cobalt Dickens registered at least 20 new domains, complete with valid SSL certificates on .ml, .ga, .cf, .gq and .tk domains – all of the malicious domains have been detailed in the full write-up of the attacks.

The group also employs publicly available tools and code taken from GitHub to help conduct the attacks in a way that allows them to avoid using malware, so they can remain undetected by cybersecurity software.

As of September 2019, it’s thought that Iranian hackers have targeted at least 380 universities in over 30 countries – with some targeted multiple times – and it’s believed the attacks targeting faculty and students will continue.

To help counter the threat of phishing attacks, researchers recommend that universities and educational institutions implement multi-factor authentication.

“While implementing additional security controls like MFA could seem burdensome in environments that value user flexibility and innovation, single-password accounts are insecure. CTU researchers recommend that all organizations protect Internet-facing resources with MFA to mitigate credential-focused threats,” said Wikoff.

Universities make an attractive target for cyber attackers because not only do they contain vast amounts of intellectual property and cutting-edge research, they’re also not as heavily regulated as other industries such as finance.

READ MORE ON CYBER CRIME

Credit: Zdnet

Previous Post

CISO Kit — Breach Protection in the Palm of Your Hand

Next Post

Email Marketing Trends and Best-Practices: Fall 2019

Related Posts

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines
Internet Security

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

March 5, 2021
With its acquisition of Auth0, Okta goes all in on CIAM
Internet Security

With its acquisition of Auth0, Okta goes all in on CIAM

March 5, 2021
Singapore Airlines frequent flyer members hit in third-party data security breach
Internet Security

Singapore Airlines frequent flyer members hit in third-party data security breach

March 5, 2021
Ransomware as a service is the new big problem for business
Internet Security

Ransomware as a service is the new big problem for business

March 5, 2021
Microsoft: We’re cracking down on Excel macro malware
Internet Security

Microsoft: We’re cracking down on Excel macro malware

March 4, 2021
Next Post
Email Marketing Trends and Best-Practices: Fall 2019

Email Marketing Trends and Best-Practices: Fall 2019

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

Plasticity in Deep Learning: Dynamic Adaptations for AI Self-Driving Cars

January 6, 2019
Microsoft, Google Use Artificial Intelligence to Fight Hackers

Microsoft, Google Use Artificial Intelligence to Fight Hackers

January 6, 2019

Categories

  • Artificial Intelligence
  • Big Data
  • Blockchain
  • Crypto News
  • Data Science
  • Digital Marketing
  • Internet Privacy
  • Internet Security
  • Learn to Code
  • Machine Learning
  • Marketing Technology
  • Neural Networks
  • Technology Companies

Don't miss it

How to Meet the Enterprise-Grade Challenge of Scaling AI 
Artificial Intelligence

How to Meet the Enterprise-Grade Challenge of Scaling AI 

March 5, 2021
Comprehensive Report on Machine Learning Market 2021 | Size, Growth, Demand, Opportunities & Forecast To 2027
Machine Learning

Comprehensive Report on Machine Learning Market 2021 | Size, Growth, Demand, Opportunities & Forecast To 2027

March 5, 2021
GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines
Internet Security

GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines

March 5, 2021
Convergence of AI, 5G and Augmented Reality Poses New Security Risks 
Artificial Intelligence

Convergence of AI, 5G and Augmented Reality Poses New Security Risks 

March 5, 2021
2021 Gartner Magic Quadrant for Data Science and Machine Learning Platforms
Machine Learning

2021 Gartner Magic Quadrant for Data Science and Machine Learning Platforms

March 5, 2021
With its acquisition of Auth0, Okta goes all in on CIAM
Internet Security

With its acquisition of Auth0, Okta goes all in on CIAM

March 5, 2021
NikolaNews

NikolaNews.com is an online News Portal which aims to share news about blockchain, AI, Big Data, and Data Privacy and more!

What’s New Here?

  • How to Meet the Enterprise-Grade Challenge of Scaling AI  March 5, 2021
  • Comprehensive Report on Machine Learning Market 2021 | Size, Growth, Demand, Opportunities & Forecast To 2027 March 5, 2021
  • GAO report finds DOD’s weapons programs lack clear cybersecurity guidelines March 5, 2021
  • Convergence of AI, 5G and Augmented Reality Poses New Security Risks  March 5, 2021

Subscribe to get more!

© 2019 NikolaNews.com - Global Tech Updates

No Result
View All Result
  • AI Development
    • Artificial Intelligence
    • Machine Learning
    • Neural Networks
    • Learn to Code
  • Data
    • Blockchain
    • Big Data
    • Data Science
  • IT Security
    • Internet Privacy
    • Internet Security
  • Marketing
    • Digital Marketing
    • Marketing Technology
  • Technology Companies
  • Crypto News

© 2019 NikolaNews.com - Global Tech Updates