A U.S. court has granted Microsoft the authority to seize domain names in order to take down a phishing campaign run by a notorious group of Iranian hackers.
In a poston Microsoft’s official blog,Apps Archives Customer Security & Trust VP Tom Burt shared details from the now unsealed caseit filed in the U.S. District Court for Washington D.C against the hacker group called Phosphorus. The group is also known under the names APT 35, Charming Kitten, and Ajax Security Team.
Microsoft’s Digital Crimes Unit was allowed to take control of 99 domains in order to stop the hackers’ attacks. Domains such as outlook-verify.net, yahoo-verify.net, and verification-live.com were being used in spear-phishing campaigns by the Iranian hackers.
Spear-phishing is a method of attack that relies on social engineering, where a hacker tricks an individual or group into believing that they are a trusted source through an email or web address. The hacker then uses that trust to obtain passwords or other sensitive information from their target.
Phosphorus targeted U.S. businesses and government agencies as well as activists and journalists. As Techcrunchpoints out, former U.S. Air Force intelligence officer turned spy Monica Witt reportedly has connections to the hacker group. Witt defected to Iran and is currently a fugitive wanted by the FBI for alleged espionage. It is believedthat Witt provided the Iranian hackers with intelligence regarding U.S. officials and her former colleagues. Using this information, the hackers can more accurately pinpoint their spear-phishing campaigns against certain individuals.
According to Microsoft, Phosphorus would send a link containing malicious software under the guise of a friendly source, sometimes even posing as a target’s contact on social media. The hackers would be able to use that software to access the victim’s computer. The group also deployed another attack using the now Microsoft-controlled domain names to trick its targets into thinking there was a security risk flagged on their Outlook or Yahoo account. Upon clicking on the phishing link, the target would be prompted to login to their account, effectively providing their password to the hackers.
This isn’t the first time a U.S. court granted Microsoft the authority to take control of domain names connected to phishing campaigns. Last year, a federal court injunction allowed Microsoft to seize domains deployed by hackers that infringe on the company’s trademarks. Microsoft used that authorityto terminate spear-phishing campaigns set up my the Russian hacker group known as Fancy Bear, which was targeting U.S. politicians, Congressional staffers, and think tanks.
Topics Cybersecurity Microsoft
Against Fear
NYT Strands hints, answers for March 16
Bose QuietComfort Ultra noise
Wordle today: The answer and hints for March 15, 2025
Best Sony headphones deal: Over $100 off Sony XM5 headphones
Today's Hurdle hints and answers for March 14, 2025
Manchester United vs. Real Sociedad 2025 livestream: Watch Europa League for free
Wordle today: The answer and hints for March 14, 2025
A worthless juicer and a Gipper-branded server
NYT Strands hints, answers for March 15
Best keyboard deals: Save on Asus gaming keyboards at Amazon
Stephen King uses 'Misery' comparison to roast Trump on Threads
NYT Strands hints, answers for March 15
Samsung Galaxy Tab A9+: 25% off at Amazon
NYT mini crossword answers for May 12, 2025
Google’s Find My Device is adding location
Best Garmin deal: Save $50 on the Venu 3S at Best Buy
What's new to streaming this week? (March 13, 2025)
How to Squeeze the Most Out of Your iPhone's Battery
Your Amazon Echo will start reporting to Amazon on March 28
I Killed Wolf’s by Todd McEwenChiefs vs 49ers livestream: How to watch the big game for freeWho are the 2024 Super Bowl referee, judges?Spanish Journals by Catherine LaceyCruising at the LA Fitness by Danez SmithMore from Scraps by Abdulah SidranThe Erotics of (Re)reading by Peter SzendyPassion, Jealousy, Love, and an Unquestionable Disdain for Art by Olivia KanThe Prom of the Colorado River by Meg BernhardApple seemingly kills web apps and website push alerts for some users in iOS 17.4 beta 2The Living Death Drug by Lisa CarverNYT's The Mini crossword answers for February 9If Taylor Swift attends Super Bowl 2024, who will she bring?'Plus One': Maya Erskine and Jack Quaid's undersung romAndra Day will sing the 'Black national anthem' at the 2024 Super BowlThe Prom of the Colorado River by Meg BernhardNew Poetry: Margaret Ross, Nora Claire Miller, and Richie Hofmann Recommend by The Paris ReviewGoogle Bard is now Google GeminiJohn Turturro's puppy play brings 'Mr. and Mrs. Smith' to lifeNew Theater, New York, January 2025 by Rhoda Feng Greenland fossils may be the earliest evidence of life on Earth ZTE Axon 7 mini is a cheaper, smaller version of the company's flagship PewDiePie explains ISIS tweet that got him temporarily kicked off Twitter What Are Chiplets and Why They Are So Important for the Future of Processors The bezels on Lenovo's most powerful Yoga laptop are so incredibly thin Helpline launches for women forced to illegally purchase abortion pills Fun Disney content is on its way to Netflix Huawei’s 8.4 Oscar winner and 'Harry Potter' alum Jim Broadbent headed to 'Game of Thrones' OpTic Gaming and the road to the 'Call of Duty' World Championships That video of a hawk dropping a snake on a BBQ? It's definitely a hoax College football player shares sweet lunch with middle schooler eating alone Australia vs. Japan 2025 livestream: Watch World Cup qualifiers for free Starbucks has a spicy new fall drink to challenge the beloved PSL Students at South Africa school told to chemically straighten their Afros Japan loves this purple potato ice cream Asus ZenBook 3 looks just like a MacBook, except it runs Windows 10 Reliance Jio's service now commercially available in India Hey Apple and Samsung, Xiaomi just launched tap Why we should worry about Facebook's Trending topics disaster
1.9014s , 8223.921875 kb
Copyright © 2025 Powered by 【Apps Archives】,Defense Information Network