Iranian hackers target defence, satellite firms to gather secrets: Microsoft
The heavy sanctions imposed by the US on Iran have limited their access to military hardware and discouraged Western companies from sending medical supplies to the country. As a result, Iran has been compelled to look for trade secrets held by for...
By IANS | Updated:
ETtech
Microsoft analysts have said that Iranian state-backed hackers targeted satellite, defence, and pharmaceutical companies worldwide to gather intelligence and perhaps build up domestic production in these industries amid heavy US sanctions.
Since February, the hackers have successfully breached several organisations by applying a simple hacking technique, indicating the high level of determination from Tehran's hacking teams, according to Microsoft.
The heavy sanctions imposed by the US on Iran have limited their access to military hardware and discouraged Western companies from sending medical supplies to the country. As a result, Iran has been compelled to look for trade secrets held by foreign firms, reports CNN.
The industries targeted by the hackers are those in which they might need to build domestic production due to difficulties in acquiring necessary resources as a result of the sanctions.
However, the exact reason for targeting satellite, defence, and pharmaceutical companies is unknown, the increased incentive created by the sanctions suggests that Iran is seeking valuable intelligence.
According to Microsoft analysts, the hackers have been breaking into email accounts by guessing common passwords in bulk until one of them works.
In some instances, intruders stole data from victim networks, while in others they monitored email accounts unnoticed. The hackers have been able to continue their operations without being detected due to the simplicity and effectiveness of this technique.
Iran has a history of denying allegations of hacking, and the government has yet to respond to this one, the report said.
Microsoft has not disclosed which companies in the US were targeted, and the US National Security Agency has not commented on the matter, according to the report.
Meanwhile, China-backed hackers stole a digital consumer key from Microsoft to gain unfettered access to US government emails and the tech giant has detailed how the cyber criminals pulled off one of the biggest heists in the corporate and government circles.
China-based threat actor, Storm-0558, used an acquired Microsoft account (MSA) consumer key to forge tokens to access OWA (Outlook Web App) and Outlook.com.
Since February, the hackers have successfully breached several organisations by applying a simple hacking technique, indicating the high level of determination from Tehran's hacking teams, according to Microsoft.
The heavy sanctions imposed by the US on Iran have limited their access to military hardware and discouraged Western companies from sending medical supplies to the country. As a result, Iran has been compelled to look for trade secrets held by foreign firms, reports CNN.
The industries targeted by the hackers are those in which they might need to build domestic production due to difficulties in acquiring necessary resources as a result of the sanctions.
However, the exact reason for targeting satellite, defence, and pharmaceutical companies is unknown, the increased incentive created by the sanctions suggests that Iran is seeking valuable intelligence.
According to Microsoft analysts, the hackers have been breaking into email accounts by guessing common passwords in bulk until one of them works.
ADVERTISEMENT
In some instances, intruders stole data from victim networks, while in others they monitored email accounts unnoticed. The hackers have been able to continue their operations without being detected due to the simplicity and effectiveness of this technique.
Iran has a history of denying allegations of hacking, and the government has yet to respond to this one, the report said.
Microsoft has not disclosed which companies in the US were targeted, and the US National Security Agency has not commented on the matter, according to the report.
Meanwhile, China-backed hackers stole a digital consumer key from Microsoft to gain unfettered access to US government emails and the tech giant has detailed how the cyber criminals pulled off one of the biggest heists in the corporate and government circles.
ADVERTISEMENT
China-based threat actor, Storm-0558, used an acquired Microsoft account (MSA) consumer key to forge tokens to access OWA (Outlook Web App) and Outlook.com.
Download
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
The Economic Times Business News App for the Latest News in Business, Sensex, Stock Market Updates & More.
Download
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
The Economic Times News App for Quarterly Results, Latest News in ITR, Business, Share Market, Live Sensex News & More.
Related Articles
Iranian hackers reportedly breached US gas station tank readers across multiple states, raising alarms2026-05-16T03:34:15Z- Stryker cyber attack: Which Iranian hacker group is suspected behind the breach and why did Iran choose a global medical device giant for a wiper malware attack amid the US-Iran war?2026-03-11T15:15:22Z
- Trump's juicy emails to ex-porn star Stormy Daniels to be released by Iranian hackers? Here's what could happen2025-07-01T12:36:30Z
ADVERTISEMENT
