Attack by ‘Iranian’ Hackers on Senior American and Israeli Medical Researchers

The American publication “The Hill” has reported that Iranian hackers linked to the Islamic Republic of Iran targeted dozens of senior American and Israeli researchers four months ago.

The report, published on Wednesday, April 1st, states that research by the “Proofpoint” cybersecurity group shows that two groups of Iranian hackers, known as “Phosphorus” and “Cuddly Kittens,” targeted 25 senior researchers and professionals from the United States and Israel in the fields of genetics, neurology, and endocrinology in December of last year.

These hacker groups attempted to gain access to their personal documents by sending misleading emails that directed the researchers to a fraudulent website with the appearance of Microsoft’s website.

This report does not specify whether the Iranian hackers were successful in their operations, but it states that attacks aimed at obtaining medical information are not a new topic. Previously, the Proofpoint cybersecurity group had reported on attempts by hackers linked to the Islamic Revolutionary Guard Corps and some other countries such as China to target researchers, hospitals, and others during the coronavirus crisis.

Reuters news agency and three cybersecurity researchers also reported in May of last year that publicly accessible internet archives show that hackers linked to Iran attempted to breach accounts of employees at the American pharmaceutical company Gilead.

American company Gilead is the manufacturer of a drug called remdesivir. American health officials had said this drug showed “clear evidence” of effectiveness in improving patients suffering from COVID-19.

“The Hill” publication writes that the “Phosphorus” group is one of the very professional hackers supported by the Islamic Republic, which has been active in recent years.

Microsoft reported last year that this group attacked around a hundred senior guests of the Munich Security Conference.

Microsoft also reported in 2019 of an internet attack on hundreds of users of this company by the “Phosphorus” group.

The computer company Microsoft announced in September 2019 that the “Phosphorus” group carried out attacks on a US presidential election campaign (in 2016).

Microsoft said the company had discovered “extensive” cyber activities of these hackers that, in addition to the election campaign, targeted current and former US government officials, journalists active in international political affairs, and prominent Iranians living outside the country.

Prior to that, the Associated Press reported on the “Cuddly Kittens” group’s attempt to breach the personal email of “several officials” at the US Treasury Department.

Source: Radio Farda