A group of suspected Iranian hackers are using a sophisticated network of fake LinkedIn profiles to spy on unsuspecting targets worldwide — including the U.S. — according to a new report.
The fake personas fell into two groups: one set that were fully developed profiles posing as recruiters for major worldwide government contractors and international corporations, and another set that were less developed and designed to lend legitimacy to the primary accounts through endorsements and connections.
The report from computer company Dell’s Secure Works unit identified the group behind the profiles as “TG 2889,” and researchers said there was strong circumstantial evidence pointing to the group operating out of Iran. The hackers employed a number of companies matched to computer domains used in attacks that had previously been attributed to cyberattackers from Iran, and the spread of targets in the Middle East, Arab states, North Africa and the U.S. would be consistent with an Iranian source.
Read the Remainder at CNN