Recently, Israel and Iran have been embroiled in a series of conflicts and tensions in both the geopolitical arena and cyberspace, posing significant challenges to regional stability, as well as making both countries targets for cybersecurity vulnerabilities. It has also been done. As tensions rise, so does the risk of cyberattacks targeting critical infrastructure, government agencies, and individual citizens.
Cybersecurity vulnerabilities increase after Hamas attack
At Constella, we have watched the escalating cyberwar between Israel and Iran come to light through a series of high-profile data breaches. This ongoing cyber conflict not only reflects rising geopolitical tensions, but also reveals an alarming trend in the weaponization of sensitive data. Our analysis shows that these breaches have affected not only government agencies and major organizations, but also millions of individuals, highlighting the far-reaching impact of cyberwarfare.
- Israel insurance information
On April 3, an attacker named “MakhlabalNasr” claimed to have accessed the data of 8 million Israelis insured by the Israel National Insurance Institute. This information includes bank account details, place of residence, and other personal data. This sensitive data is shared in his Telegram group associated with the hacking group Makhlab_al_Nasr.
2. Israeli Department of Defense
Later that week, on April 7, another attacker claimed to have access to classified information from the Israeli Defense Department on the same breach forum. Much of this data appears to have been previously published in 2023, but the recent resurfacing of the breach resulted in thousands of additional records being compromised, including the following information:
- National ID
- first name
- Last name
- project
- group
- telephone number
- email address
- date of birth
- Year
- hebrew birthday
- city
- address
- sex
- situation
- father's name
- country of origin
- level of support
- general
- injury
3. israel election campaign
A separate incident exposed other possible breaches from election apps used by the Likud party and other political parties. 6.5 million records Contains voter registration data and personal information of Israeli citizens. The compromised information included:
- full name
- telephone number
- ID number
- residential address
- sex
- Year
- political preferences
Four. israel post
Earlier this week, on May 7, a breach first disclosed in November 2021 resurfaced, with a group of threat actors claiming its origin was Israel Post. The breach reportedly compromised 900,000 unique email addresses and associated personal information.
These are just a few examples of the many breaches we have observed over the past few days. The total number of Israel-related breaches has increased by 80% in recent months, reflecting the escalating cyber warfare.
Similarly, Iran is not immune to the dangers of cyberwar. As evidenced by the Crescent of Anon leaks, Russia and Iran's cooperative efforts have revealed a troubling alliance in cyberspace. This breach not only revealed email addresses, IP addresses, and domain names; document and Agreement between Russia and Iran. These documents highlight the depth of cooperation between the two countries in the field of warfare and raise questions about their joint goals and potential goals.
Additionally, the leak includes the following mention: Drone related issuessuggesting discussions and plans for malign operations beyond traditional conflict areas.
Tips to prevent cybersecurity vulnerabilities
Whether you are a citizen of a country caught up in the ongoing cyber war or not, as a member of the digital world, it is important to protect yourself from growing cyber threats.
Follow these tips:
- Please monitor your account carefully: Regularly check your bank statements, credit card statements, and online accounts for fraudulent transactions or suspicious activity. Early detection can prevent further damage.
- Set up alerts: Many financial institutions offer free alert services that notify you of unusual activity in your account. Enabling these alerts will give you instant updates on potential fraudulent transactions.
- Change your password regularly. If your data is compromised, change your password immediately. Consider using strong, unique passwords for each account and using a password manager to manage your passwords.
- Beware of phishing attempts: Be wary of emails, phone calls, and messages that request personal information or direct you to websites that require you to enter personal data. Contact the organization directly using a trusted number or website to verify the authenticity of your request.
*** This is a syndicated blog from the Security Bloggers Network, powered by Constella Intelligence, and written by Alberto Casares. Read the original post: https://constella.ai/recent-breaches-in-israel-and-iran-a-closer-look-at-cybersecurity-vulnerabilities/
