Lebanon-Based Hackers Linked To Iran’s Government Targeted Israeli Groups, Says Microsoft

• Hashim Sheikh
• . June 4, 2022
• . Update: June 4, 2022 5:18 pm
• 633 Views
• Shares

Lebanon–Microsoft has detected and disabled an undocumented Lebanon-based activity group that has ties with Iran’s Ministry of Intelligence and Security (MOIS).  

The group was responsible for attacking over 20 organisations inside Israel and one intergovernmental organisation in Lebanon. Microsoft Threat Intelligence Center (MSTIC) named the group ‘Polonium’.

Microsoft suspends over 20 malicious OneDrive applications

Microsoft has suspended more than 20 malicious OneDrive applications created by the Polonium group. According to a statement released on Thursday, the tech giant deployed a series of security intelligence updates to restrain tools developed by Polonium operators.

The tech giant said in a statement, “Our goal is to help deter future activity by exposing and sharing the Polonium tactics with the community at large.” Microsoft has earlier made attempts to combat cyber spying.

Related Posts

• 
  Algerian Decision To End Friendly Ties With Spain Creates Tension
• 
  Coalition unclear of votes to pass crucial settlement bill
• 
  Egypt Sentences Ex-Presidential Candidate To 15 Years Prison
• 
  Israel Accuses Iran Of Making Nuclear Weapons
• 
  Israel Focuses At Infrastructure Development Through NIS 30 Billion Investments
• 
  Jeddah Compensation Delivery Begins For Demolished Real Estate
• 
  Lebanon’s Parliament re-elects longtime speaker Nabih Berri for 7th time
• 
  OPEC Fund To Pump In $1 Billion To Help Developing Nations Worst Hit By Ukraine War
• 
  Saudi Arabia And Other Arab Countries Outraged By Indian Official’s Remarks Against Prophet Muhammed
• 
  Tamkeen In Tandem With Massive Bahraini $30 Billion Economy Recovery Plan
• 
  Washington must step up actions to counter Iran-backed militias
• 
  Why Jordan Syrian Ties Might Snap Too Quickly?

Hackers targeted Israeli groups

Microsoft said that the activity group had been focusing on critical manufacturing, IT, and Israel’s defence industry since February 2022. Reportedly, an IT company was used to target a downstream aviation company and law firm in a supply chain attack.

Polonium used OneDrive accounts to attack Israeli groups. However, this activity does not represent any security issues on the OneDrive platform.

Increase in Cyberattack

In recent years, Israel and Iran’s cyber war has increased rapidly. The two countries have been engaged in cyber conflict over the past few years.

In 2021, Facebook banned Israeli cyber spy firms from its platforms after a report alleged that “cyber mercenaries” had attempted to hack users’ accounts. Hackers stole the data of their targets, including human rights activists, government critics, celebrities, journalists and ordinary people from more than 100 countries.

Earlier, Pegasus software, produced by the Israeli NSO Group, was used by the governments of  Morocco and Saudi Arabia to snoop on journalists, human activists, and opposition members. Pegasus Spyware was also used to hack the devices of six Palestinian human rights activists.