Facebook has disrupted a group of Iranian hackers who tried to use the platform to distribute malware and launch espionage operations targeting mainly US military personnel and defence firms, the company said on Thursday.
The hacking group, called Tortoiseshell, was previously reported to mainly focus on the technology industry in the Middle East. It used various malicious tactics to identify its targets and infect their devices with malware to enable espionage, Facebook said.
The social media giant said its probe found that some of the malware was developed by by a Tehran-based IT company with ties to the Islamic Revolutionary Guard Corps.
“In an apparent expansion of malicious activity to other regions and industries, our investigation found [Tortoiseshell] targeting military personnel and companies in the defence and aerospace industries primarily in the US, and to a lesser extent in the UK and Europe,” Mike Dvilyanski, Facebook’s head of cyber espionage investigations, and David Agranovich, director of threat disruption, said in a joint statement.
“This activity had the hallmarks of a well-resourced and persistent operation … while relying on relatively strong operational security measures to hide who’s behind it,” they added.
Facebook said its platform was only one of the elements of the “much broader cross-platform cyber espionage operation”.
The California-based tech giant identified different tactics deployed by Tortoiseshell, including phishing and credential theft. The hackers created fake online accounts to contact targets, build trust and trick them into clicking on malicious links.
The fake accounts had profiles across multiple social media platforms to make them appear more authentic. These accounts often posed as recruiters and employees working in various industries such as defence, aerospace, hospitality, medicine, journalism, NGOs and aviation.
“Our investigation found that this group invested significant time into their social engineering efforts across the internet, in some cases engaging with their targets for months,” Mr Dvilyanski and Mr Agranovich said.
The hackers also created fake recruiting websites and spoofed a US Department of Labour job search site.
They created illegitimate domains to steal login credentials to the victims’ online accounts, Facebook said, adding that the hackers used several malware families.
“Our investigation and malware analysis found that a portion of their malware was developed by Mahak Rayan Afraz [MRA], an IT company in Tehran with ties to the Islamic Revolutionary Guard Corps ... some of the current and former MRA executives have links to companies sanctioned by the US government,” Facebook said.
To disrupt their operation, Facebook said it blocked malicious domains from being shared on its platform, taken down the group’s accounts and notified people who the company believed were targeted by the threat group.
In a separate report released in May, Facebook said it detected and halted more than 150 secret influence operations in the past four years that violated its policy against co-ordinated inauthentic behaviour.
Covert influence operations targeted public debates across both established and emerging social media platforms, blogs, major newspapers and magazines. They were orchestrated by governments, commercial entities, politicians and political groups, globally as well as locally, the company said.
AT%20A%20GLANCE
%3Cp%3E%3Cstrong%3EWindfall%3C%2Fstrong%3E%3Cbr%3EAn%20%E2%80%9Cenergy%20profits%20levy%E2%80%9D%20to%20raise%20about%20%C2%A35%20billion%20in%20a%20year.%20The%20temporary%20one-off%20tax%20will%20hit%20oil%20and%20gas%20firms%20by%2025%20per%20cent%20on%20extraordinary%20profits.%20An%2080%20per%20cent%20investment%20allowance%20should%20calm%20Conservative%20nerves%20that%20the%20move%20will%20dent%20North%20Sea%20firms%E2%80%99%20investment%20to%20save%20them%2091p%20for%20every%20%C2%A31%20they%20spend.%3Cbr%3E%3Cstrong%3EA%20universal%20grant%3C%2Fstrong%3E%3Cbr%3EEnergy%20bills%20discount%2C%20which%20was%20effectively%20a%20%C2%A3200%20loan%2C%20has%20doubled%20to%20a%20%C2%A3400%20discount%20on%20bills%20for%20all%20households%20from%20October%20that%20will%20not%20need%20to%20be%20paid%20back.%3Cbr%3E%3Cstrong%3ETargeted%20measures%3C%2Fstrong%3E%3Cbr%3EMore%20than%20eight%20million%20of%20the%20lowest%20income%20households%20will%20receive%20a%20%C2%A3650%20one-off%20payment.%20It%20will%20apply%20to%20households%20on%20Universal%20Credit%2C%20Tax%20Credits%2C%20Pension%20Credit%20and%20legacy%20benefits.%3Cbr%3ESeparate%20one-off%20payments%20of%20%C2%A3300%20will%20go%20to%20pensioners%20and%20%C2%A3150%20for%20those%20receiving%20disability%20benefits.%3C%2Fp%3E%0A
Company profile
Name: Steppi
Founders: Joe Franklin and Milos Savic
Launched: February 2020
Size: 10,000 users by the end of July and a goal of 200,000 users by the end of the year
Employees: Five
Based: Jumeirah Lakes Towers, Dubai
Financing stage: Two seed rounds – the first sourced from angel investors and the founders' personal savings
Second round raised Dh720,000 from silent investors in June this year
Dr Afridi's warning signs of digital addiction
Spending an excessive amount of time on the phone.
Neglecting personal, social, or academic responsibilities.
Losing interest in other activities or hobbies that were once enjoyed.
Having withdrawal symptoms like feeling anxious, restless, or upset when the technology is not available.
Experiencing sleep disturbances or changes in sleep patterns.
What are the guidelines?
Under 18 months: Avoid screen time altogether, except for video chatting with family.
Aged 18-24 months: If screens are introduced, it should be high-quality content watched with a caregiver to help the child understand what they are seeing.
Aged 2-5 years: Limit to one-hour per day of high-quality programming, with co-viewing whenever possible.
Aged 6-12 years: Set consistent limits on screen time to ensure it does not interfere with sleep, physical activity, or social interactions.
Teenagers: Encourage a balanced approach – screens should not replace sleep, exercise, or face-to-face socialisation.
Source: American Paediatric Association
COMPANY%20PROFILE
%3Cp%3E%3Cstrong%3EName%3A%20%3C%2Fstrong%3ESmartCrowd%0D%3Cbr%3E%3Cstrong%3EStarted%3A%20%3C%2Fstrong%3E2018%0D%3Cbr%3E%3Cstrong%3EFounder%3A%20%3C%2Fstrong%3ESiddiq%20Farid%20and%20Musfique%20Ahmed%0D%3Cbr%3E%3Cstrong%3EBased%3A%20%3C%2Fstrong%3EDubai%0D%3Cbr%3E%3Cstrong%3ESector%3A%20%3C%2Fstrong%3EFinTech%20%2F%20PropTech%0D%3Cbr%3E%3Cstrong%3EInitial%20investment%3A%20%3C%2Fstrong%3E%24650%2C000%0D%3Cbr%3E%3Cstrong%3ECurrent%20number%20of%20staff%3A%3C%2Fstrong%3E%2035%0D%3Cbr%3E%3Cstrong%3EInvestment%20stage%3A%20%3C%2Fstrong%3ESeries%20A%0D%3Cbr%3E%3Cstrong%3EInvestors%3A%20%3C%2Fstrong%3EVarious%20institutional%20investors%20and%20notable%20angel%20investors%20(500%20MENA%2C%20Shurooq%2C%20Mada%2C%20Seedstar%2C%20Tricap)%3C%2Fp%3E%0A
Labour dispute
The insured employee may still file an ILOE claim even if a labour dispute is ongoing post termination, but the insurer may suspend or reject payment, until the courts resolve the dispute, especially if the reason for termination is contested. The outcome of the labour court proceedings can directly affect eligibility.
- Abdullah Ishnaneh, Partner, BSA Law
UAE currency: the story behind the money in your pockets
EA Sports FC 25
Developer: EA Vancouver, EA Romania
Publisher: EA Sports
Consoles: Nintendo Switch, PlayStation 4&5, Xbox One and Xbox Series X/S
Rating: 3.5/5
In numbers: China in Dubai
The number of Chinese people living in Dubai: An estimated 200,000
Number of Chinese people in International City: Almost 50,000
Daily visitors to Dragon Mart in 2018/19: 120,000
Daily visitors to Dragon Mart in 2010: 20,000
Percentage increase in visitors in eight years: 500 per cent
Company name: Farmin
Date started: March 2019
Founder: Dr Ali Al Hammadi
Based: Abu Dhabi
Sector: AgriTech
Initial investment: None to date
Partners/Incubators: UAE Space Agency/Krypto Labs
How green is the expo nursery?
Some 400,000 shrubs and 13,000 trees in the on-site nursery
An additional 450,000 shrubs and 4,000 trees to be delivered in the months leading up to the expo
Ghaf, date palm, acacia arabica, acacia tortilis, vitex or sage, techoma and the salvadora are just some heat tolerant native plants in the nursery
Approximately 340 species of shrubs and trees selected for diverse landscape
The nursery team works exclusively with organic fertilisers and pesticides
All shrubs and trees supplied by Dubai Municipality
Most sourced from farms, nurseries across the country
Plants and trees are re-potted when they arrive at nursery to give them room to grow
Some mature trees are in open areas or planted within the expo site
Green waste is recycled as compost
Treated sewage effluent supplied by Dubai Municipality is used to meet the majority of the nursery’s irrigation needs
Construction workforce peaked at 40,000 workers
About 65,000 people have signed up to volunteer
Main themes of expo is ‘Connecting Minds, Creating the Future’ and three subthemes of opportunity, mobility and sustainability.
Expo 2020 Dubai to open in October 2020 and run for six months
Afro%20salons
%3Cp%3E%3Cstrong%3EFor%20women%3A%3C%2Fstrong%3E%3Cbr%3ESisu%20Hair%20Salon%2C%20Jumeirah%201%2C%20Dubai%3Cbr%3EBoho%20Salon%2C%20Al%20Barsha%20South%2C%20Dubai%3Cbr%3EMoonlight%2C%20Al%20Falah%20Street%2C%20Abu%20Dhabi%3Cbr%3E%3Cstrong%3EFor%20men%3A%3C%2Fstrong%3E%3Cbr%3EMK%20Barbershop%2C%20Dar%20Al%20Wasl%20Mall%2C%20Dubai%3Cbr%3ERegency%20Saloon%2C%20Al%20Zahiyah%2C%20Abu%20Dhabi%3Cbr%3EUptown%20Barbershop%2C%20Al%20Nasseriya%2C%20Sharjah%3C%2Fp%3E%0A
Who's who in Yemen conflict
Houthis: Iran-backed rebels who occupy Sanaa and run unrecognised government
Yemeni government: Exiled government in Aden led by eight-member Presidential Leadership Council
Southern Transitional Council: Faction in Yemeni government that seeks autonomy for the south
Habrish 'rebels': Tribal-backed forces feuding with STC over control of oil in government territory
Day 2, Dubai Test: At a glance
Moment of the day Pakistan’s effort in the field had hints of shambles about it. The wheels were officially off when Wahab Riaz lost his run up and aborted the delivery four times in a row. He re-measured his run, jogged in for two practice goes. Then, when he was finally ready to go, he bailed out again. It was a total cringefest.
Stat of the day – 139.5 Yasir Shah has bowled 139.5 overs in three innings so far in this Test series. Judged by his returns, the workload has not withered him. He has 14 wickets so far, and became history’s first spinner to take five-wickets in an innings in five consecutive Tests. Not bad for someone whose fitness was in question before the series.
The verdict Stranger things have happened, but it is going to take something extraordinary for Pakistan to keep their undefeated record in Test series in the UAE in tact from this position. At least Shan Masood and Sami Aslam have made a positive start to the salvage effort.
Joe Root's Test record
Tests: 53; Innings: 98; Not outs: 11; Runs: 4,594; Best score: 254; Average: 52.80; 100s: 11; 50s: 27
MATCH INFO
Uefa Champions League semi-finals, first leg
Liverpool v Roma
When: April 24, 10.45pm kick-off (UAE)
Where: Anfield, Liverpool
Live: BeIN Sports HD
Second leg: May 2, Stadio Olimpico, Rome
UAE currency: the story behind the money in your pockets
Tour de France Stage 16:
165km run from Le Puy-en-Velay to Romans-sur-Isère
