Schneider Electric Expands Youth Partnership with Enactus to Drive Inclusive Energy Transition in Egypt    China's Jiangsu Zhengyong to build $85m factory in Egypt's Ain Sokhna: SCZONE    Egyptian pound ticks up vs. US dollar at Thursday's close    Egypt condemns Israeli plan to build 3,400 settler homes in West Bank    Fitch Ratings: ASEAN Islamic finance set to surpass $1t by 2026-end    Egypt, Namibia explore closer pharmaceutical cooperation    Egypt, China ink $1bn agreement for Sailun tire plant in SCZONE    Renowned Egyptian novelist Sonallah Ibrahim dies at 88    Egypt's Electricity Minister discusses progress on Greece power link    Egypt's FM discusses Gaza, bilateral ties in calls with Saudi, South African counterparts    Egypt prepares to tackle seasonal air pollution in Nile Delta    27 Western countries issue joint call for unimpeded aid access to Gaza    Egyptian, Ugandan Presidents open business forum to boost trade    Al-Sisi says any party thinking Egypt will neglect water rights is 'completely mistaken'    Egypt's Sisi warns against unilateral Nile measures, reaffirms Egypt's water security stance    Egypt's Sisi, Uganda's Museveni discuss boosting ties    Egypt, Colombia discuss medical support for Palestinians injured in Gaza    Australia to recognise Palestinian state in September, New Zealand to decide    Egypt, Huawei explore healthcare digital transformation cooperation    Global matcha market to surpass $7bn by 2030: Nutrition expert    Egypt's Sisi, Sudan's Idris discuss strategic ties, stability    Egypt's govt. issues licensing controls for used cooking oil activities    Egypt to inaugurate Grand Egyptian Museum on 1 November    Egypt, Uganda strengthen water cooperation, address Nile governance    Egypt's Sisi: Egypt is gateway for aid to Gaza, not displacement    Korean Cultural Centre in Cairo launches folk painting workshop    Greco-Roman rock-cut tombs unearthed in Egypt's Aswan    Egypt reveals heritage e-training portal    Sisi launches new support initiative for families of war, terrorism victims    Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara    Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool    On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt    Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary    Germany among EU's priciest labour markets – official data    Paris Olympic gold '24 medals hit record value    A minute of silence for Egyptian sports    Russia says it's in sync with US, China, Pakistan on Taliban    It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game    Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights    Sudan says countries must cooperate on vaccines    Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19    Egypt to tax bloggers, YouTubers    Egypt's FM asserts importance of stability in Libya, holding elections as scheduled    We mustn't lose touch: Muller after Bayern win in Bundesliga    Egypt records 36 new deaths from Covid-19, highest since mid June    Egypt sells $3 bln US-dollar dominated eurobonds    Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go    Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform    







Thank you for reporting!
This image will be automatically disabled when it gets reported by several people.



Experts see Iranian link in attempt to hack Syrian dissident
AP Published in Ahram Online on 02 - 08 - 2016

Syrian opposition activist Noura Al-Ameer was combing through her emails late one night when a message caught her eye. The sender was "Assadcrimes" and he promised information about Iranian meddling in the Middle East. But the email seemed odd.
Al-Ameer turned to her husband, cybersecurity trainer Bahr Abdul Razzak, in their small, book-cluttered home in the Turkish city of Gaziantep.
"Have you heard of this group before?" Al-Ameer asked.
"No," he said. "But let me check the email."
Abdul Razzak, a fellow at internet watchdog group Citizen Lab, quickly determined that the group was bogus. The email, sent on Oct. 3 last year, was an electronic trap — one of hundreds of malicious messages that have flown back and forth as rebels grapple with the government of Bashar Assad in Syria. This one had been aimed at snaring Al-Ameer in particular; the website registered by the hacker was in her name, suggesting an attempt to steal her identity.
Al-Ameer is a well-known opposition figure, and stealing her data or her identity could have been the jumping off point to attack other Syrians in and out of the country.
As Abdul Razzak and his colleagues tried to trace the hackers, they found a trail of digital clues leading to Iran. Their story — detailed in a report issued Tuesday by Citizen Lab, an interview with the couple and conversations with outside experts — raise the possibility that Iran has gone beyond sending men and materiel to tip the scale in Assad's favor.
The country's hackers may have joined the fray as well.
"It's not a shock," said Al-Ameer, a 29-year-old who spent six months in Syrian government detention before moving to Turkey in 2013. "They're fighting our people on the ground. I think it's normal for any side that fights you on the ground to fight you on the internet."
Evidence of an Iranian link is outlined in a 56-page report by Citizen Lab, based at the Munk School of Global Affairs at the University of Toronto. The group has made a specialty of tracking the hackers who've dogged Syria's opposition, which lead author John Scott-Railton said had turned into "something of a petri dish for threat actors in the Middle East."
The report says those behind the "Assadcrimes" website appear to have inadvertently exposed their site's logs, showing evidence that its creators accessed it in part from the Iranian internet space. The site itself briefly hosted a Farsi-language email service, and a string of data recovered from the malicious code used to target Al-Ameer appeared to refer to a developer who runs a malicious software site registered in the Iranian city of Shiraz.
The evidence isn't conclusive but it "lets us think that we're perhaps looking at a group that's operating from Iran," Scott-Railton said. He cautioned that it wasn't possible to say much about the group's potential sponsorship — government or otherwise.
An outside expert who evaluated Citizen Lab's report endorsed its work.
The botched cyberespionage attempt "is consistent with Iranian activity we've previous observed, in terms of operational security, social engineering, and technical sophistication," said John Hulquist, a threat intelligence manager at network security company FireEye, based in Milpitas, California.
Calls to Iran's Embassy in Paris were not answered Tuesday.
The hackers in Al-Ameer's case appear to have made some mistakes. But Scott-Railton said those who target Syria's scattered opposition activists are only as sophisticated as they need to be. Many groups operating in the area, including the pro-Assad Syrian Electronic Army, have used very simple tools and persistent trickery to repeatedly compromise savvier targets.
"Not all hacking in a conflict looks like Stuxnet," said Scott-Railton, referring to the complex computer bug widely suspected of being unleashed by the United States to sabotage Iran's nuclear program. "What this shows is how powerful social engineering is."
Al-Ameer said that, in a way, the hacking was scarier than when she says she was arrested and tortured at the hands of Assad's security forces.
"When they arrested me, I was careful just tell them what I wanted," she said. "When they hack you, they will know everything without harming you physically. For our case, it's more dangerous than arresting.
"Inside Syria or outside Syria, we're not safe."

Clic here to read the story from its source.