https://sputnikglobe.com/20150827/1026275912.html

Report Finds ‘Growing Number’ of Gmail Hacks Coming From Iran

Sputnik International

Iranian hackers set up an “elaborate” phishing operation to target the Iranian diaspora and at least one Western activist, according to report of the... 27.08.2015, Sputnik International

2015-08-27T18:48+0000

2015-08-27T18:57+0000

https://cdn1.img.sputnikglobe.com/img/102627/58/1026275808_0:213:3532:2210_1920x0_80_0_0_54c1f61e960998802178da50f9e2892f.jpg

iran

canada

Sputnik International

feedback@sputniknews.com

+74956456601

MIA „Rosiya Segodnya“

252

2015

Sputnik International

feedback@sputniknews.com

+74956456601

MIA „Rosiya Segodnya“

252

News

en_EN

Sputnik International

feedback@sputniknews.com

+74956456601

MIA „Rosiya Segodnya“

252

1920

1080

true

1920

1440

true

https://cdn1.img.sputnikglobe.com/img/102627/58/1026275808_0:101:3532:2322_1920x0_80_0_0_af6a995f134a5d4ccf253abc6fe1d7b7.jpg

1920

true

Sputnik International

feedback@sputniknews.com

+74956456601

MIA „Rosiya Segodnya“

252

Sputnik International

newsfeed, iran, canada

Report Finds ‘Growing Number’ of Gmail Hacks Coming From Iran

18:48 GMT 27.08.2015 (Updated: 18:57 GMT 27.08.2015)

Iranian women use computers at an Internet cafe in central Tehran, Iran - Sputnik International

Iranian hackers set up an “elaborate” phishing operation to target the Iranian diaspora and at least one Western activist, according to report of the University of Toronto’s Citizen Lab.

Russia

Cyberattacks on Russian Authorities Increase - Russian Security Council

26 August 2015, 12:18 GMT

WASHINGTON (Sputnik) — Hackers from Iran have found a way to get around Gmail’s two-factor authentication system and hack the Iranian diaspora and political dissidents, according to a report published on Thursday by the University of Toronto’s Citizen Lab.

“The ongoing attacks attempt to circumvent the extra protections conferred by two-factor authentication in Gmail, and rely heavily on phone-call based phishing and ‘real time’ login attempts by the attackers,” the report read.

Two-factor authentication is a process where a user sets up not only a password and username, but also another piece of information for an extra layer of security.

According to the report, Iranian hackers have set up an “elaborate” phishing operation to target the Iranian diaspora and at least one Western activist.

Surveillance Tool Used by Law Enforcement Vulnerable to Hackers

18 June 2015, 21:18 GMT

The report said these “growing number of attacks” point to “extensive knowledge of the targets’ activities, and share infrastructure and tactics with campaigns previously linked to Iranian threat actors.”

In order for these two-factor authentication targeted attacks to succeed, the alleged Iranian hackers must obtain the targets’ password and single-user codes.

According to the report, the alleged Iranian hackers obtain the passwords first through text messages and phishing password reset pages, where they then collect the information and take over the account.

Additionally, the report said the hackers also attempted to gain access to their targets’ Gmail accounts by posing as journalists. In some instances the hackers made calls to users pitching fake business proposals that they would then send to their Gmail with a fake Google Drive link.