18 months after indictment, Iranian phishers are still targeting universities

[InfoSec News <alerts () infosecnews org>]

https://arstechnica.com/information-technology/2019/09/18-months-after-indictment-iranian-phishers-are-still-targeting-universities/

By Dan Goodin
Ars Technica
9/11/2019

In March 2018, nine Iranians were criminally charged for their involvement with 
the Mabna Institute, a company federal prosecutors said was created in 2013 for 
the express purpose of using coordinated cyber intrusions to steal terabytes of 
academic data from universities, academic journal publishers, tech companies, 
and government organizations. Almost 18 months later, the group’s hacking 
activities are still going strong, Secureworks, a Dell-owned security company, 
said on Wednesday.

The hacking group, which Secureworks researchers call Cobalt Dickens, has 
recently undertaken a phishing operation that targeted more than 60 
universities in countries including the US, Canada, the UK, Switzerland, and 
Australia, according to a report. Starting in July, Cobalt Dickens used 
malicious webpages that spoofed legitimate university resources in an attempt 
to steal the passwords of targeted individuals. The individuals were lured 
through emails like the one below, dated August 2.

[...]

--
Subscribe to InfoSec News
https://www.infosecnews.org/subscribe-to-infosec-news/
https://twitter.com/infosecnews_