Security experts in Britain are warning that hackers with ties to Iran and Russia are tricking individuals into clicking on dangerous websites by posing as journalists and experts.
According to a warning issued on Thursday by the UK’s National Cyber Security Centre, the hackers have attempted to steal emails from individuals working in academia, defense, the media, and government, as well as from activists and non-governmental organizations. The hackers share similar objectives but are reportedly working independently.
“These campaigns by threat actors based in Russia and Iran continue to ruthlessly pursue their targets in an attempt to steal online credentials and compromise potentially sensitive systems,” said Paul Chichester, the center’s director of operations. “We strongly encourage organizations and individuals to remain vigilant to potential approaches and follow the mitigation advice in the advisory to protect themselves online.”
The Russian hackers, known as “Seaborgium” or “Cold River,” were linked by researchers from Alphabet Inc.’s Google in May to a website that had published private emails from the former head of the UK’s MI6 intelligence agency. The group also last year targeted scientists at three nuclear research laboratories in the US, according to Reuters.
The Iranian hackers, also sometimes called “TA453” or “Charming Kitten,” have previously been observed targeting officials at the World Health Organization and scholars who specialize in Middle Eastern issues.
The hackers study their targets’ interests and identify their real-world social or professional contacts, according to the UK’s cyber security center. They have also created fake social media or networking profiles and tricked their victims by sending supposed conference or event invitations, according to the center.