Exclusive – Iran hackers may target U.S. energy, defence firms, FBI warns

Another day, another cyber attack. What’s more alarming at the moment however isn’t clear:

  • The fact that the public is becoming callous after being constantly inundated by stories of another attack each day, thinking tomorrow will be the same as today.
  • The fact that the intelligence community is seemingly always behind on the extent of the damage or how deep America’s adversaries have actually penetrated.
  • The fact that nothing is done in retaliation when it’s a known fact who’s behind the attacks.

Perhaps the answer is D), all of the above. Sadly, much of the American public isn’t even aware of what’s happening or the threat it poses.

 

BOSTON (Reuters) – The Federal Bureau of Investigation has warned U.S. businesses to be on the alert for a sophisticated Iranian hacking operation whose targets include defence contractors, energy firms and educational institutions, according to a confidential agency document.

The operation is the same as one flagged last week by cyber security firm Cylance Inc as targeting critical infrastructure organizations worldwide, cyber security experts said. Cylance has said it uncovered more than 50 victims from what it dubbed Operation Cleaver, in 16 countries, including the United States.

The FBI’s confidential “Flash” report, seen by Reuters on Friday, provides technical details about malicious software and techniques used in the attacks, along with advice on thwarting the hackers. It asked businesses to contact the FBI if they believed they were victims. Continue reading

U.S. utility’s control system was hacked, says Homeland Security

(Reuters) – A sophisticated hacking group recently attacked a U.S. public utility and compromised its control system network, but there was no evidence that the utility’s operations were affected, according to the Department of Homeland Security.

DHS did not identify the utility in a report that was issued this week by the agency’s Industrial Control Systems Cyber Emergency Response Team, or ICS-CERT. Continue reading