Iranian hackers target corporate VPN servers

For story suggestions or custom animation requests, contact [email protected] Visit http://archive.nextanimationstudio.com to view News Direct's complete archive of 3D news animations.

RESTRICTIONS: Broadcast: NO USE JAPAN, NO USE TAIWAN Digital: NO USE JAPAN, NO USE TAIWAN
A new report by cyber security firm ClearSky has found that hackers backed by the Iranian government have been exploiting bugs in corporate VPN servers.

Over the past three years this campaign has targeted numerous companies around the world ranging from the IT sector to the oil and gas, aviation, government and security sectors. In some cases, the hackers were able to exploit vulnerabilities in a short period of time.

The hackers developed and used infrastructure that would allow them to control and access their targets in the long-term, according to the report. They were able to use this technique to steal valuable information from targeted companies.

Researchers said that this could also be used to spread malware such as
ZeroCleare and Dustman. Both of these malware are designed to delete as much data from hacked devices as possible, according to ZDNet.

ZDNet points out that the report 'dispels the notion' that Iranian cyber hackers aren't as sophisticated as hackers in Russia, China or North Korea.

RUNDOWN SHOWS:
1. Hackers hacking into corporate VPN servers
2. Numerous companies have been targeted
3. How they targeted these servers
4. How they could use this technique to spread malware

VOICEOVER (in English):

"A new report by cyber security firm ClearSky has found that hackers backed by the Iranian government have been exploiting bugs in corporate VPN servers in a bid to infiltrate and plant backdoors onto devices."

"Over the past three years the so-called Fox-Kitten campaign targeted numerous companies around the world ranging from the IT sector to the oil and gas, aviation, government and security sectors."

"According to the report, the hackers developed and used infrastructure that would allow them to control and access their targets in the long-term."

"They were able to use this technique to steal valuable information from targeted companies."

"However, researchers said that this could also be used to spread malware such as
ZeroCleare and Dustman."

"According to ZDNet, both of these malware are designed to delete as much data from hacked devices as possible."

SOURCES: Computing, ZDNet, Clear Sky
https://www.computing.co.uk/news/4010898/iranian-hackers-vpn-backdoors
https://www.zdnet.com/article/iranian-hackers-have-been-hacking-vpn-servers-to-plant-backdoors-in-companies-around-the-world/
https://www.zdnet.com/article/iranian-hackers-deploy-new-zerocleare-data-wiping-malware/
https://www.clearskysec.com/fox-kitten/
https://www.clearskysec.com/wp-content/uploads/2020/02/ClearSky-Fox-Kitten-Campaign-v1.pdf