Iran General NewsIran cyberspies created fake news website

Iran cyberspies created fake news website


AFP: Spies based in Iran created a bogus news organization used for espionage since 2011. A report released this week by iSight Partners says that more than 2,000 people are or have been targeted in the operation dubbed Newscaster, which uses a “front media outlet” called

By  Behrouz Mehri

AFP – Spies based in Iran created a bogus news organization used for espionage since 2011 against US and Israeli military targets, security researchers said.

A report released this week by iSight Partners says that more than 2,000 people are or have been targeted in the operation dubbed Newscaster, which uses a “front media outlet” called

The operation appears to be “carried out by Iranian actors, though there is a dearth of information implicating its ultimate sponsor,” the report said. It is believed to still be ongoing.

Under the program, spies plagiarized the work of real media outlets “to legitimize their personas as journalists,” the report added.

Some of the news organizations whose work was misappropriated included the Associated Press, Reuters and the BBC.

– ‘Brash and complex’ –

The documents from iSight called the operation “brash and complex,” and the analysts found at least two legitimate identities falsified from news organizations including Fox News and Reuters.

The effort is part of a campaign that also used social media and “spear-phishing” to connect with officials and contractors in order to gain access to secret networks and steal data.

In addition to the fake news operation, the network uses its made-up personas to establish connections on Facebook and other social networks, with the aim of stealing email logins and other credentials.

“What this group lacks in technical sophistication, they make up for in brashness, creativity and patience,” the iSight report said.

The length of the operation “is indicative of at least marginal success” it added.

In addition to the US and Israel, the report said that the operation may have targeted “high- and low-ranking personnel in multiple countries,” including Britain, Iraq and Saudi Arabia.

Specific targets included members of the US military, congressional personnel, Washington area journalists and diplomats, US and Israeli defense contractors and members of the “US/Israeli lobby.”

Of particular interest to the network were people involved in nuclear non-proliferation and sanctions that could affect Tehran.

“We are aware that hackers in Iran and elsewhere often use social media to gain information or make connections with targets of interest, including US government and private entities,” US State Department spokeswoman Jen Psaki said.

“To defend against these threats, the United States is committed to helping the public and private sector protect itself in cyberspace by sharing actionable information.”

– ‘Alternative approach’ –

The operation suggests a stealth effort to steal data, unlike some of the more overt cyberattacks, said iSight’s John Hultquist.

“In many ways, these operators have escaped the malware arms race in lieu of an alternative approach,” Hultquist said in a blog post.

“Newscaster focuses on human factors and third-party platforms, weak spots for many of the most sophisticated enterprise defenses.”

The report said the news site was registered in Iran and that the IP addresses used by the site also appear to be Iranian.

Other evidence, including the use of a Persian password, bolster suspicions the operation came from Iran.

“The network of personas is especially complex, including dozens of accounts with fictitious personal and professional material, many of whom claim to work for the news provider,” the report said.

The researchers said the impact is hard to assess, but warned that “successful compromises could be leveraged for diplomatic, military and other strategic advantages, and possibly even used as reconnaissance for attack.”

Latest news

Iran’s Regime Inches Toward Nuclear Weapons

Iran’s regime is once again at the center of a dangerous escalation of the proliferation of nuclear weapons. A...

US Congress Expresses Support for Iranian People’s Quest for a Democratic, Secular Republic

Several bipartisan members of the U.S. House of Representatives have presented a resolution (H. RES. 100) supporting the Iranian...

Wave Of Poisoning Attacks Against Schools Leave Hundreds Sick

Iran has been shaken for three months by serial poisoning attacks against all-girls schools, which has left more than...

Iranian Security Forces Beat Baluch Doctor To Death

On Thursday, February 23, activists in Sistan and Baluchestan provinces reported the news of the death of Dr. Ebrahim...

World Powers Should Hear The Voice Of Iranians, Not Dictators And Their Remnants

Iran’s nationwide uprising continues despite its ups and down. The clerical system’s demise no longer seems a dream but...

The Rial Continues To Sink, Hits Record 500,000 Marks Against The Dollar

The US dollar increased in price by more than 11 percent in February and grew to more than 500,000...

Must read

Iran says firm on nuclear rights as tour ends

AFP: Iran's nuclear negotiator said on Sunday that Tehran...

Iran: Former IRGC Commander Given New Identity

By Jubin Katiraie The mullahs in Iran could be...

You might also likeRELATED
Recommended to you