The Citizen Lab describes an elaborate phishing campaign against targets in Iran's diaspora, and at least one Western activist. The ongoing attacks attempt to circumvent the extra protections conferred by two-factor authentication in Gmail, and rely heavily on phone-call based phishing and "real time" login attempts by the attackers. Most of the attacks begin with a phone call from a UK phone number, with attackers speaking in either English or Farsi.
The attacks point to extensive knowledge of the targets' activities, and share infrastructure and tactics with campaigns previously linked to Iranian threat actors. The researchers have documented a growing number of these attacks, and have received unconfirmed reports of targets and victims of highly similar attacks, including in Iran. The report includes extra detail to help potential targets recognize similar attacks. The report closes with some security suggestions, highlighting the importance of two-factor authentication.
(Score: 2) by Gravis on Friday August 28 2015, @03:27PM
Iranian diaspora are Iranian people living outside of Iran and their children born abroad.
seriously, most people only know a 30K words tops. diaspora isn't exactly a common word.
(Score: 0) by Anonymous Coward on Friday August 28 2015, @05:28PM
Take your anti-intellectualism elsewhere.
(Score: 0) by Anonymous Coward on Saturday August 29 2015, @02:03PM
Here's a book for you:
http://blog.xkcd.com/2015/05/13/new-book-thing-explainer/ [xkcd.com]