The UK’s National Cyber Security Centre (NCSC) and its US counterparts have issued a high-alert warning over a surge in spear-phishing attacks backed by Iran.
These attacks, linked to Iran’s Islamic Revolutionary Guard Corps (IRGC), are reportedly targeting politicians, journalists, activists, and others involved in Middle Eastern affairs.
The attackers are using social engineering techniques, impersonating trusted figures (e.g. colleagues or journalists) via email and messaging platforms to gain victims’ trust. The goal is to trick individuals into providing email credentials through fake log-in pages, thereby granting the attackers full access to sensitive communications and data. This poses significant risks not only to personal and business accounts but also to national security, as these compromised emails may be used to further cyber-espionage efforts.
The NCSC warns that these spear-phishing campaigns are escalating amidst geopolitical tensions, particularly as investigations into Iranian cyber operations grow. Recent developments include the indictment of three IRGC members in the US for hacking attempts related to political campaigns.
The advice is to implement multi-factor authentication (MFA), regularly update cybersecurity protocols, and to remain vigilant against unsolicited communications. Proactive steps, such as using the NCSC’s cyber defence tools, may also help mitigate the threat.