Month: August 2024

Reuters reports that the Iranian hacking team which compromised the campaign of U.S. presidential candidate Donald Trump “is known for placing surveillance software on the mobile phones of its victims, enabling them to record calls, steal texts and silently turn on cameras and microphones, according to researchers and experts who follow the group.”

Known as APT42 or CharmingKitten by the cybersecurity research community, the accused Iranian hackers are widely believed to be associated with an intelligence division inside Iran’s military, known as the Intelligence Organization of the Islamic Revolutionary Guard Corps or IRGC-IO. Their appearance in the U.S. election is noteworthy, sources told Reuters, because of their invasive espionage approach against high-value targets in Washington and Israel. “What makes (APT42) incredibly dangerous is this idea that they are an organization that has a history of physically targeting people of interest,” said John Hultquist, chief analyst with U.S. cybersecurity firm Mandiant, who referenced past research that found the group surveilling the cell phones of Iranian activists and protesters… Hultquist said the hackers commonly use mobile malware that allows them to “record phone calls, room audio recordings, pilfer SMS (text) inboxes, take images off of a machine,” and gather geolocation data…

APT42 also commonly impersonates journalists and Washington think tanks in complex, email-based social engineering operations that aim to lure their targeting into opening booby-trapped messages, which let them takeover systems. The group’s “credential phishing campaigns are highly targeted and well-researched; the group typically targets a small number of individuals,” said Josh Miller, a threat analyst with email security company Proofpoint. They often target anti-Iran activists, reporters with access to sources inside Iran, Middle Eastern academics and foreign-policy advisers. This has included the hacking of western government officials and American defense contractors. For example, in 2018, the hackers targeted nuclear workers and U.S. Treasury department officials around the time the United States formally withdrew from the Joint Comprehensive Plan of Action (JCPOA), said Allison Wikoff, a senior cyber intelligence analyst with professional services company PricewaterhouseCoopers.
“APT42 is still actively targeting campaign officials and former Trump administration figures critical of Iran, according to a blog post by Google’s cybersecurity research team.”

Read more of this story at Slashdot.

Reuters reports that the Iranian hacking team which compromised the campaign of U.S. presidential candidate Donald Trump “is known for placing surveillance software on the mobile phones of its victims, enabling them to record calls, steal texts and silently turn on cameras and microphones, according to researchers and experts who follow the group.”

Known as APT42 or CharmingKitten by the cybersecurity research community, the accused Iranian hackers are widely believed to be associated with an intelligence division inside Iran’s military, known as the Intelligence Organization of the Islamic Revolutionary Guard Corps or IRGC-IO. Their appearance in the U.S. election is noteworthy, sources told Reuters, because of their invasive espionage approach against high-value targets in Washington and Israel. “What makes (APT42) incredibly dangerous is this idea that they are an organization that has a history of physically targeting people of interest,” said John Hultquist, chief analyst with U.S. cybersecurity firm Mandiant, who referenced past research that found the group surveilling the cell phones of Iranian activists and protesters… Hultquist said the hackers commonly use mobile malware that allows them to “record phone calls, room audio recordings, pilfer SMS (text) inboxes, take images off of a machine,” and gather geolocation data…

APT42 also commonly impersonates journalists and Washington think tanks in complex, email-based social engineering operations that aim to lure their targeting into opening booby-trapped messages, which let them takeover systems. The group’s “credential phishing campaigns are highly targeted and well-researched; the group typically targets a small number of individuals,” said Josh Miller, a threat analyst with email security company Proofpoint. They often target anti-Iran activists, reporters with access to sources inside Iran, Middle Eastern academics and foreign-policy advisers. This has included the hacking of western government officials and American defense contractors. For example, in 2018, the hackers targeted nuclear workers and U.S. Treasury department officials around the time the United States formally withdrew from the Joint Comprehensive Plan of Action (JCPOA), said Allison Wikoff, a senior cyber intelligence analyst with professional services company PricewaterhouseCoopers.
“APT42 is still actively targeting campaign officials and former Trump administration figures critical of Iran, according to a blog post by Google’s cybersecurity research team.”

Read more of this story at Slashdot.

Read More 

Boeing “will return its Starliner capsule from the International Space Station without the NASA astronauts,” reports CNBC. Though they’ve been on the space station since early June, the plan is to have them stay “for about six more months before flying home in February on SpaceX’s Crew-9 vehicle.
“The test flight was originally intended to last about nine days.”

The decision to bring Starliner back from the ISS empty marks a dramatic about-face for NASA and Boeing, as the organizations were previously adamant that the capsule was the primary choice for returning the crew. But Starliner’s crew flight test, which had been seen as the final major milestone in the spacecraft’s development, faced problems — most notably with its propulsion system.

“Boeing has worked very hard with NASA to get the necessary data to make this decision,” NASA Administrator Bill Nelson said during a press conference with top NASA officials at Johnson Space Center in Houston on Saturday. “We want to further understand the root causes and understand the design improvements so that the Boeing Starliner will serve as an important part of our assured crew access to the ISS.”

He reiterated that test flights are “neither safe, nor routine,” and that the decision was the “result of a commitment to safety.” NASA will now conduct another phase of its Flight Readiness Review to determine when to bring the empty Starliner home. Boeing officials had been adamant in press briefings that Starliner was safe for the astronauts to fly home in the event of an emergency, despite delaying the return multiple times. NASA said there was a “technical disagreement” between the agency and the aerospace company, and said it evaluated risk differently than Boeing for returning its crew.

Nonetheless, NASA officials repeatedly expressed support for Boeing, and Nelson said he was “100% certain” that Starliner would be able to launch with a crew again someday.

NASA posted on X.com that they’d reached the decision “after extensive review by experts across the agency.
And CNBC adds that “Ken Bowersox, NASA associate administrator, said NASA officials were unanimous in their decision to choose SpaceX to bring the crew home.”

Read more of this story at Slashdot.

Boeing “will return its Starliner capsule from the International Space Station without the NASA astronauts,” reports CNBC. Though they’ve been on the space station since early June, the plan is to have them stay “for about six more months before flying home in February on SpaceX’s Crew-9 vehicle.
“The test flight was originally intended to last about nine days.”

The decision to bring Starliner back from the ISS empty marks a dramatic about-face for NASA and Boeing, as the organizations were previously adamant that the capsule was the primary choice for returning the crew. But Starliner’s crew flight test, which had been seen as the final major milestone in the spacecraft’s development, faced problems — most notably with its propulsion system.

“Boeing has worked very hard with NASA to get the necessary data to make this decision,” NASA Administrator Bill Nelson said during a press conference with top NASA officials at Johnson Space Center in Houston on Saturday. “We want to further understand the root causes and understand the design improvements so that the Boeing Starliner will serve as an important part of our assured crew access to the ISS.”

He reiterated that test flights are “neither safe, nor routine,” and that the decision was the “result of a commitment to safety.” NASA will now conduct another phase of its Flight Readiness Review to determine when to bring the empty Starliner home. Boeing officials had been adamant in press briefings that Starliner was safe for the astronauts to fly home in the event of an emergency, despite delaying the return multiple times. NASA said there was a “technical disagreement” between the agency and the aerospace company, and said it evaluated risk differently than Boeing for returning its crew.

Nonetheless, NASA officials repeatedly expressed support for Boeing, and Nelson said he was “100% certain” that Starliner would be able to launch with a crew again someday.

NASA posted on X.com that they’d reached the decision “after extensive review by experts across the agency.
And CNBC adds that “Ken Bowersox, NASA associate administrator, said NASA officials were unanimous in their decision to choose SpaceX to bring the crew home.”

Read more of this story at Slashdot.

Read More