Iran-based cybercriminals are likely behind a sophisticated “unprecedented” hacking campaign targeting entities across the world, according to US cybersecurity firm FireEye.
FireEye identified a wave of DNS (Domain Name System) hijacking that has affected dozens of domains belonging to government, telecommunications, and internet infrastructure entities. “While we do not currently link this activity to any tracked group, initial research suggests the actor or actors responsible have a nexus to Iran,” FireEye said in a blog post.
“Preliminary technical evidence allows us to assess with moderate confidence that this activity is conducted by persons based in Iran and that the activity aligns with Iranian government interests,” the researchers wrote.