Connect with us

News

Microsoft Blocks Lebanon-Based Hackers Targeting Israel

The hackers were abusing Microsoft’s file hosting service, OneDrive, to target private and government organizations in Israel.

Published

on

microsoft blocks lebanon-based hackers targeting israel

Microsoft Threat Intelligence Center (MSTIC) has successfully identified and disabled an attack orchestrated by a Lebanon-based activity group called Polonium.

The group was abusing Microsoft’s file hosting service, OneDrive, to target private and government organizations in Israel. Based on its tools and techniques, it seems that Polonium is affiliated with Iran’s Ministry of Intelligence and Security (MOIS).

“Polonium has targeted or compromised more than 20 organizations based in Israel and one intergovernmental organization with operations in Lebanon over the past three months,” explains MSTIC.

The good news is that all legitimate OneDrive accounts are completely safe because the attack didn’t involve any security issues or vulnerabilities. Instead, Polonium used the file hosting service for command and control to execute part of their attack operation.

Polonium’s targets include primarily organizations in critical manufacturing, IT, and defense industry. “In at least one case, Polonium’s compromise of an IT company was used to target a downstream aviation company and law firm in a supply chain attack that relied on service provider credentials to gain access to the targeted networks.”

MSTIC is still actively investigating how Polonium gained initial access to many of their victims, but it knows that most victims were running Fortinet appliances. Based on this fact, MSTIC suspects that the CVE-2018-13379 vulnerability was used to gain access inside the targeted organizations.

Also Read: Is Your Phone Hacked? How To Find Out & Protect Yourself

While the threat has been contained, there are certain actions MSTIC recommends all organizations to take to protect themselves, such as confirming that Microsoft Defender Antivirus is updated, enabling multi-factor authentication (MFA), and blocking in-bound traffic from specific IP addresses.

This isn’t the first instance of threat actors using OneDrive and other similar file hosting services to achieve their nefarious goals. Last year, for example, Microsoft discovered that OneDrive was used to host malware files commonly used to launch Conti ransomware attacks.

Advertisement

📢 Get Exclusive Monthly Articles, Updates & Tech Tips Right In Your Inbox!

JOIN 17K+ SUBSCRIBERS

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

News

Viasat Satellite Messaging Tech Showcased In Saudi Arabia

The direct-to-device (D2D) demonstration highlighted the technology’s potential to revolutionize remote communication.

Published

on

viasat satellite messaging tech showcased in saudi arabia

Satellite communications firm Viasat announced yesterday that it had completed its first demonstration of direct-to-device (D2D) satellite connectivity technology in Saudi Arabia. The live broadcast took place during the “Connecting the World from the Skies” event in Riyadh, organized by Saudi Arabia’s Communications, Space & Technology Commission (CST) alongside the International Telecommunication Union (ITU).

Attendees witnessed successful satellite-based two-way messaging and SOS alerts sent using commercial Android smartphones and a combination of Viasat’s robust L-band satellite network and the Bullitt over-the-top messaging app. Signals were transmitted using the company’s L-band spacecraft positioned over the Indian Ocean, while the infrastructure for 3GPP NTN services was deployed by Viasat’s partner Skylo.

Sandeep Moorthy, Viasat’s Chief Technical Officer, emphasized the significance of the demonstration, explaining, “By expanding our direct-to-device innovation to the Kingdom of Saudi Arabia, we’re showcasing the potential for D2D services in the fast-growing Gulf and Asia-Pacific region. D2D could help reduce barriers to connectivity in regions where terrestrial services are spotty and unavailable to help transform industries and supply chains, enable new opportunities, and to become more efficient, sustainable and safer. We’d like to thank the CST for their support in carrying out this exciting demonstration”.

Also Read: Joby Begins Construction Of Dubai’s First Vertiport For Air Taxis

D2D technology allows devices like smartphones, vehicles, and industrial equipment to connect seamlessly to both satellite and terrestrial networks. Unlike traditional satellite setups, D2D eliminates the need for extra hardware, thanks to emerging global standards that are gaining traction among satellite operators, mobile network providers, and tech manufacturers.

What makes this approach particularly promising is that Viasat uses a licensed, dedicated satellite spectrum to deliver its D2D services. This avoids any interference with existing terrestrial networks, allowing smooth integration with mobile network operators in the future.

The demonstration clearly showed the potential of D2D technology to bridge connectivity gaps in remote regions while opening up opportunities for innovation, improved safety, sustainability, and efficiency.

Continue Reading

#Trending