Thursday, September 24, 2020
Home Lead Story Iranian Hackers Breach VPN Servers to Gain Network Access of Several Firms...

Iranian Hackers Breach VPN Servers to Gain Network Access of Several Firms Globally

Iranian hackers breach VPN servers of several firms globally

Cybersecurity researchers have spotted a widespread hacking by Iranian groups who compromised VPN (virtual private network) servers, planted bugs or ‘backdoors’ and succeeded in gaining access to the networks of numerous companies and organisations around the world.

During the last quarter of 2019, the research team from the UK-based ClearSky uncovered a widespread Iranian offensive campaign which it called the “Fox Kitten Campaign”. “This campaign is being conducted in the last three years against dozens of companies and organisations in Israel around the world,” the company said in a statement on Sunday.

“Through the campaign, the attackers succeeded in gaining access and persistent foothold in the networks of numerous companies and organisations from the IT, telecommunication, oil and gas, aviation, government and security sectors around the world,” it added.

Aside from malware, the campaign enfolds an entire infrastructure dedicated to ensuring the long-lasting capability to control and fully access the targets chosen by the Iranians. The campaign infrastructure was used to develop and maintain access routes to the targeted organisations and steal valuable information from the targeted organisations.

Iranian hackers
The Iranian APT groups have succeeded to penetrate and steal information from dozens of companies around the world in the past three years. Pixabay

“Hackers maintained a long-lasting foothold at the targeted organisations and breach additional companies through supply-chain attacks.”

The campaign was conducted by using a variety of offensive tools, most of which open-source code-based and some self-developed. The Iranian APT groups have succeeded to penetrate and steal information from dozens of companies around the world in the past three years.

The most successful and significant attack vector used by the Iranian advanced persistent threat (APT) groups in the last three years has been the exploitation of known vulnerabilities in systems with unpatched VPN and RDP services, in order to infiltrate and take control over critical corporate information storages.

After breaching the organisations, the attackers usually maintain a foothold and operational redundancy by installing and creating several more access points to the core corporate network. As a result, identifying and closing one access point does not necessarily deny the capability to carry on operations inside the network.

Also Read- High Temperature Records in Antarctica will Take Months to Verify: UN

“Iranian APT groups have developed good technical offensive capabilities and are able to exploit one-day vulnerabilities in relatively short periods of time,” said the researchers. ClearSky observed Iranian groups exploiting VPN flaws within hours after the bugs had been publicly disclosed.

According to a ZDNet report, Iranian hackers have targeted Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs to hack into large companies. (IANS)



Most Popular

Microsoft Study Shows Pandemic has Increased Feeling of Burnout Among Workers

If you've been feeling overwhelmed at work lately, you are not alone as a new Microsoft study has shown that the pandemic has increased...

Lower Zinc Levels in Blood Linked to Higher Death Risk in Covid Patients: Study

In a major study, researchers have found that having a lower level of zinc in the blood is associated with a poorer outcome in...

Time Magazine List of 100 Most Influential People: Ayushmann Khurrana Among 5 Indians

Indian actor Ayushmann Khurrana is in the Time magazine list of 100 Most Influential People this year. Follow NewsGram on LinkedIn to know what's happening...

Return to Usual Sexual Activity After Heart Attack for Long-Term Survival

Returning to usual levels of sexual activity within a few months after a heart attack is positively associated with long-term survival, say researchers. According to...

Researchers Find Potential New Drug Candidate Against Enterovirus

Some good news in the search for antiviral drugs for hard-to-treat diseases as researchers have identified a potential new drug candidate against enterovirus 71,...

Stroke Patients With Covid-19 Show Increased Inflammation, Death Rate: Researchers

Stroke patients who also have Covid-19 showed increased systemic inflammation, more serious stroke severity and a much higher rate of death, compared to stroke...

Playing Video Games in Childhood Can Improve Working Memory Years Later

In a good news to video game lovers, researchers have found that playing video games as a child can improve working memory years later. The...

Know the Negative Impact of Covid-19 Lockdown on Kids

Children, who appear at a relatively lower risk from Covid-19, are disproportionately harmed by precautions involved with lockdowns, warn researchers. Experts from Oxford University Hospitals...

Recent Comments