Hackers Backed By Iran Targeted Presidential Campaign, Microsoft Says
WASHINGTON – Hackers backed by the Iranian government have been targeting the email accounts of at least one presidential campaign, current and former federal government officials and journalists covering political campaigns, Microsoft revealed Friday.
In a blog post on its website, the tech giant says that over a 30-day period between August and September, the Microsoft Threat Intelligence Center observed a group it has dubbed “Phosphorus” making more than 2,700 attempts to identify consumer email accounts belonging to specific Microsoft customers and then attack 241 of those accounts.
“While the attacks we’re disclosing today were not technically sophisticated, they attempted to use a significant amount of personal information both to identify the accounts belonging to their intended targets and in a few cases to attempt attacks,” Tom Burt, corporate vice president of Customer Security and Trust at Microsoft, wrote in the post.
“This effort suggests Phosphorous is highly motivated and willing to invest significant time and resources engaging in research and other means of information gathering,” he said.
Microsoft has not revealed the name of the presidential campaign, but its disclosure is just more evidence that U.S. adversaries are now picking up where Russia’s interference in the 2016 United States presidential election left off.
Burt said that Phosphorus used information gathered from researching their targets or other means to game password reset or account recovery features and attempt to take over some targeted accounts.
For example, they would seek access to a secondary email account linked to a user’s Microsoft account, then attempt to gain access to a user’s Microsoft account through verification sent to the secondary account.
In some instances, they gathered phone numbers belonging to their targets and used them to assist in authenticating password resets.
The company says four accounts were compromised as a result of these attempts. The four accounts were not associated with the U.S. presidential campaign or current and former U.S. government officials.
In addition to helping to secure those accounts, Microsoft’s Digital Crimes Unit has also taken legal and technical steps to combat Phosphorus attacks.
“We continue to take these types of actions,” Burt wrote.
Microsoft also reminded its customers that there are steps they can take to help secure their accounts. It is encouraging all customers to enable two-step verification on their accounts which can be done in Account Security settings.
In The News
WASHINGTON (AP) — Supreme Court Justice Ruth Bader Ginsburg, a diminutive yet towering women’s rights champion who became the court’s second female justice, died Friday at her home in Washington. She was 87. Ginsburg died of complications from metastatic pancreatic cancer, the court said. Ginsberg’s death... Read More
WASHINGTON — Dave and Diane Schell, a retired social studies teacher and a retired human resources professional from South Windsor, Connecticut, left their careers in 2015, and have worked the polls at their local precinct every election since. But not this November. The Schells — he’s... Read More
SOUTH BEND, Ind. – Former South Bend Mayor Pete Buttigieg’s “Win the Era PAC and Action Fund” has endorsed 28 candidates for various offices in the November elections. “I’m excited to announce our latest slate of endorsements, which include forward-thinking leaders across our country who are... Read More
WASHINGTON — Emergency expansions to Unemployment Insurance provided critical support to workers across the country during the early months of the pandemic. But the major component of these expansions, an additional $600 in weekly benefits, expired at the end of July. With lawmakers continuing to be... Read More
The Bipartisan Policy Center, a Washington, D.C.-based think tank, hosted a webinar on student civic engagement featuring student leaders and other experts as part of its second annual celebration of Constitution Day. The webinar focused particularly on the civic engagement of Generation Z college-age students, who... Read More
WASHINGTON — Just weeks after a Republican National Convention dominated by calls for “law and order,” President Donald Trump’s campaign has returned to an almost exclusively economic message in its advertising. It’s the latest strategic pivot by the Trump campaign, as polls continue to show Joe... Read More