US disrupts 'massive and brazen' Iranian hacking scheme, DOJ says

The Trump administration alleged Friday that Iranian government-linked hackers broke into the accounts of roughly 8,0...

Posted: Mar 23, 2018 4:24 PM
Updated: Mar 23, 2018 4:24 PM

The Trump administration alleged Friday that Iranian government-linked hackers broke into the accounts of roughly 8,000 professors at hundreds of US and foreign universities, as well as private companies and government entities, to steal massive amounts of data and intellectual property.

The indictment unveiled by the Department of Justice on Friday directly links the individuals charged with the hacks to the Iranian government, saying the perpetrators were working for Iran's Islamic Revolutionary Guard Corps and other government clients.

Along with the charges, the Treasury Department designated the nine Iranians and the company they worked for, the Mabna Institute, for sanctions.

The move from the Justice Department and Treasury follows other US efforts to indict foreign government-linked cyberattackers, including special counsel Robert Mueller's indictment of Russian operatives for meddling in the 2016 US election, and the Obama administration's indictment of Chinese military members for the government-sponsored hacking of US companies.

It also comes at a time of tension with Iran, long an adversary of the US. As President Donald Trump reshuffles his national security and diplomacy team, including firing Secretary of State Rex Tillerson and national security adviser H.R. McMaster, experts speculate Trump may be laying the groundwork to pull out of the Iran nuclear deal that the Obama administration negotiated, though Iran's cyber efforts were not part of that deal.

According to the charges, which include conspiracy to commit computer intrusions, wire fraud, unauthorized access of a computer and aggravated identity theft and could carry a maximum sentence of upwards of four decades in prison, the nine alleged hackers carried out a sophisticated worldwide campaign since at least 2013 to pull off their cyberheist of more than 30 terabytes of academic data and other sensitive information.

The indictment alleges the Mabna Institute targeted more than 100,000 professors worldwide and succeeded in compromising 8,000 of them, spread across 144 US-based universities and 176 foreign universities. In their crosshairs were various types of intellectual property, including academic journals, dissertations and electronic books.

To break into the accounts, the sophisticated campaign started by studying each target in a reconnaissance phase, then using that information to send specialized emails to the targets that appeared to come from other university professors expressing interest in a recently published work, with links to other research that were actually links to malicious websites that would mimic the professor's login page and steal his or her login information and use it to access their accounts.

The hackers also allegedly broke into the accounts of employees of US government and non-governmental entities, including the Department of Labor, the Federal Energy Regulatory Commission, the states of Hawaii and Indiana, Indiana's Department of Education, the United Nations, and the United Nations Children's Fund. Once inside, the hackers allegedly stole the entire email inbox.

Other victims included employees of 36 US-based companies and 11 companies outside the US in a wide range of industries, including academic publishers, media and entertainment entities, a law firm, tech companies, and consulting and marketing firms.

The tactic for the private-sector and governmental hacks was much less sophisticated, according to the indictment. The hackers allegedly used "password spraying": They collected email addresses they could find on the internet and then simply tried common passwords on those accounts, stealing email inboxes if they managed to get in.

It is unlikely that any of the individuals named in the indictment will ever see the inside of a US jail or courtroom. It is also unlikely that foreign governments without extradition treaties with the US would give up their citizens to stand trial, and once the indictment is unsealed, the individuals named in it are unlikely to travel to countries that could extradite them to the US.

Still, federal prosecutors hope that by exposing the hacking operations, they can deter the behavior and make clear their ability to trace it back to its source.

Mississippi Coronavirus Cases

Data is updated nightly.

Confirmed Cases: 33591

Reported Deaths: 1204
CountyConfirmedDeaths
Hinds264246
DeSoto176718
Madison135536
Jones115949
Neshoba101673
Harrison100312
Rankin99915
Lauderdale93781
Forrest92743
Scott78515
Jackson70417
Copiah62715
Washington62610
Leake59820
Lee57521
Holmes57041
Oktibbeha55728
Wayne55116
Warren54020
Yazoo5336
Grenada5227
Lowndes51513
Leflore50756
Lamar5007
Lincoln49234
Pike46617
Sunflower4368
Monroe43135
Lafayette4194
Covington3965
Panola3926
Bolivar37018
Attala36523
Simpson3603
Newton35210
Adams33218
Tate31912
Pontotoc3166
Marion30812
Chickasaw29119
Claiborne28910
Winston28210
Noxubee2738
Pearl River26932
Jasper2666
Marshall2643
Clay25111
Smith23412
Union23311
Coahoma2136
Clarke21125
Walthall2087
Lawrence1892
Yalobusha1838
Kemper17914
Carroll17111
Humphreys1569
Tallahatchie1564
Montgomery1432
Calhoun1425
Tippah14211
Itawamba1408
Hancock13413
Webster12811
Tunica1153
Jefferson1143
Jefferson Davis1144
Prentiss1113
Greene1089
Amite1043
George943
Wilkinson949
Tishomingo911
Quitman891
Alcorn762
Perry764
Choctaw754
Stone722
Franklin472
Benton420
Sharkey400
Issaquena101
Unassigned00

Alabama Coronavirus Cases

Confirmed Cases: 48588

Reported Deaths: 1042
CountyConfirmedDeaths
Jefferson5687161
Mobile4315136
Montgomery4275109
Tuscaloosa238248
Marshall181511
Madison16208
Lee146337
Shelby141424
Morgan11575
Baldwin10399
Walker101825
Elmore97519
Dallas9189
Franklin90616
Etowah83413
DeKalb7905
Chambers64727
Autauga64312
Butler63728
Tallapoosa60669
Russell5890
Unassigned53826
Houston5366
Limestone5251
Lauderdale5146
Cullman4905
Lowndes47922
Pike4525
Colbert4426
St. Clair4402
Escambia4358
Calhoun4035
Coffee3923
Covington38110
Bullock36910
Barbour3622
Jackson3432
Talladega3337
Dale3261
Marengo32011
Hale31722
Wilcox2958
Clarke2876
Sumter28512
Winston2773
Chilton2762
Blount2581
Monroe2442
Pickens2446
Marion24114
Randolph2289
Conecuh2187
Macon2029
Choctaw19912
Bibb1981
Greene1888
Perry1791
Henry1403
Crenshaw1253
Washington1217
Lawrence1130
Cherokee1117
Geneva860
Lamar801
Fayette721
Clay692
Coosa601
Cleburne391
Out of AL00
Tupelo
Overcast
92° wxIcon
Hi: 92° Lo: 74°
Feels Like: 99°
Columbus
Scattered Clouds
84° wxIcon
Hi: 90° Lo: 74°
Feels Like: 96°
Oxford
Clear
88° wxIcon
Hi: 85° Lo: 71°
Feels Like: 96°
Starkville
Overcast
77° wxIcon
Hi: 89° Lo: 71°
Feels Like: 79°
WTVA Radar
WTVA Temperatures
WTVA Severe Weather