Workers at German companies received phishing emails which purported to be messages offering them a job. AFP/file
Workers at German companies received phishing emails which purported to be messages offering them a job. AFP/file
Workers at German companies received phishing emails which purported to be messages offering them a job. AFP/file
Workers at German companies received phishing emails which purported to be messages offering them a job. AFP/file

Europe

Berlin security service blames Iran for cyber attack on German companies

Employees sent fake job offers and duped into installing malware

Tim Stickings
Tim Stickings
London

May 12, 2021

  • English
  • Arabic

Berlin security services say Iranian hackers were behind a cyber attack that targeted German companies by duping their employees into installing malware.

The attack was part of a wider effort by Iranian operatives to gain access to sensitive information in Germany, an intelligence report said.

In the latest breach, workers at German companies received phishing emails that purported to be messages offering them a job.

When they clicked on the corresponding links, they unwittingly installed malware on their computer.

The emails came from fake addresses and were designed to obtain information from the companies in question.

The breach was described as a “major cyber attack campaign” in a report by Berlin’s Office for the Protection of the Constitution.

“The reason for the increase in Iranian cyber operations in Germany probably lies in the political tensions in the Gulf,” it said.

“For one thing, Iran has a fundamental interest in acquiring political and economic information.

“On the other hand, the purpose of the attacks may also lie in circumventing the current sanctions against Iran.”

The Berlin intelligence report did not say what kind of information Iran might have sought from the latest attack.

However, security services in Germany believe that Iran is trying to acquire expertise and technology from Europe needed to build weapons of mass destruction.

  • Islamic Revolutionary Guard Corps leader Maj Gen Hossein Salami visits an IRGC naval unit's new 'missile city', at an undisclosed location in Iran. EPA
    Islamic Revolutionary Guard Corps leader Maj Gen Hossein Salami visits an IRGC naval unit's new 'missile city', at an undisclosed location in Iran. EPA
  • Iran claims the missile city is equipped with cruise and ballistic missiles and electronic warfare equipment. EPA
    Iran claims the missile city is equipped with cruise and ballistic missiles and electronic warfare equipment. EPA
  • Military equipment on display at the Islamic Revolutionary Guard Corps' new missile city in Iran. In the foreground is a portrait of Maj Gen Qassem Suleimani, commander of the IRGC's Quds Force, who was killed in a US drone strike in 2020. EPA
    Military equipment on display at the Islamic Revolutionary Guard Corps' new missile city in Iran. In the foreground is a portrait of Maj Gen Qassem Suleimani, commander of the IRGC's Quds Force, who was killed in a US drone strike in 2020. EPA
  • Missiles on display at a new Islamic Revolutionary Guard Corps' missile city, at an undisclosed location in Iran. EPA
    Missiles on display at a new Islamic Revolutionary Guard Corps' missile city, at an undisclosed location in Iran. EPA
  • Missiles stored in an underground facility in an undisclosed location, Iran. Tehran claims its new equipment has 'advanced operational capabilities', including firing from underground launchers. AP
    Missiles stored in an underground facility in an undisclosed location, Iran. Tehran claims its new equipment has 'advanced operational capabilities', including firing from underground launchers. AP
  • Missiles lined up at a new Islamic Revolutionary Guard Corps' missile city in Iran. EPA
    Missiles lined up at a new Islamic Revolutionary Guard Corps' missile city in Iran. EPA

A separate intelligence report last week revealed a series of “conspiratorial methods” used by Iran to cover up illegal weapons activity in Europe.

These included setting up fake companies, using middlemen and dividing exports into numerous small transactions so as not to attract suspicion.

Iran's activities came to the attention of Dutch intelligence too, which said Iran had tried to acquire critical goods and technology from the Netherlands.

Sweden also accused Iran of carrying out industrial espionage aimed at products that could be used to make nuclear weapons.

Iranian operatives under scrutiny in Europe

Left: Assadollah Assadi, right: Castle Reichsburg in Cochem, Germany, one of the planned stops on Assadi's European tour. Alamy
Left: Assadollah Assadi, right: Castle Reichsburg in Cochem, Germany, one of the planned stops on Assadi's European tour. Alamy

The Berlin report said Iran's intelligence services were particularly active in the field of cyber espionage, as were those of Russia and China.

“Successful cyber attacks can cause major financial, economic and political damage,” it said.

“An uncontrolled outflow of information about domestic or foreign policy, or Germany’s political stance, would be fatal in its consequences.”

The security service described Berlin as a magnet for foreign intelligence services because of its political importance and prominent technology sector.

It said Iranian regime loyalists were present in Berlin and took part in annual demonstrations on Al Quds Day, a festival inaugurated by Iran in 1979.

A headcount of potential extremists in Berlin included about 250 members of the Iran-backed Hezbollah.

Another category described as "others, especially Iranians loyal to the regime", included about 50 people.

A report last month by security services in the German state of Bavaria said Iranian intelligence was active in the country even after it was implicated in a bomb plot foiled by German authorities.

The Ministry of Intelligence of the Islamic Republic of Iran (MOIS), the Revolutionary Guard Corps Intelligence Organisation and the Guards’ elite Quds Force were named on a list of foreign spies active in Germany.

An MOIS operative was identified as the plotter behind a thwarted bomb attack on an Iranian opposition rally in Paris in 2018.

Guests at the event included former New York City mayor Rudy Giuliani and several British MPs.

The plotter, Assadollah Assadi, was arrested in Germany and transferred to Belgium, where police found explosives in a car.

More on Iran

US backs Saudi-Iran dialogue in Iraq but denies involvement

UK denies Iranian report of deal to free Nazanin Zaghari-Ratcliffe

Read more from Aya Iskandarani
The years Ramadan fell in May

1987

1954

1921

1888

New UK refugee system

 

  • A new “core protection” for refugees moving from permanent to a more basic, temporary protection
  • Shortened leave to remain - refugees will receive 30 months instead of five years
  • A longer path to settlement with no indefinite settled status until a refugee has spent 20 years in Britain
  • To encourage refugees to integrate the government will encourage them to out of the core protection route wherever possible.
  • Under core protection there will be no automatic right to family reunion
  • Refugees will have a reduced right to public funds
Ferrari 12Cilindri specs

Engine: naturally aspirated 6.5-liter V12

Power: 819hp

Torque: 678Nm at 7,250rpm

Price: From Dh1,700,000

Available: Now

FULL%20RESULTS
%3Cp%3E%3Cstrong%3EMiddleweight%20%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3EEslam%20Syaha%20(EGY)%20bt%20Robin%20Roos%20(SWE)%20%0D%3Cbr%3E%3Cstrong%3E%0D%3Cbr%3EWelterweight%20%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3EAlex%20da%20Silva%20(BRA)%20bt%20Bagyash%20Zharmamatov%20(KGZ)%20%0D%3Cbr%3EMurodov%20Samandar%20(TJK)%20bt%20Lucas%20Sampaio%20(BRA)%20%0D%3Cbr%3EShakhban%20Alkhasov%20(RUS)%20bt%20Salamat%20Orozakunov%20(KGZ)%0D%3Cbr%3EKhotamjon%20Boynazarov%20(UZB)%20bt%20Mikail%20Bayram%20(FRA)%20%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3EBantamweight%20%3C%2Fstrong%3E%0D%3Cbr%3EJieleyisi%20Baergeng%20(CHN)%20bt%20Xavier%20Alaoui%20(CAN)%20%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3EFlyweight%20%3C%2Fstrong%3E%0D%3Cbr%3ERashid%20Vagabov%20(RUS)%20bt%20Lun%20Qui%20(CHN)%20%0D%3Cbr%3EYamato%20Fujita%20(JPN)%20bt%20Furkatbek%20Yokubov%20(UZB)%20%0D%3Cbr%3EAaron%20Aby%20(WLS)%20bt%20Joevincent%20So%20(PHI)%20%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3ECatchweight%20176lb%20%3C%2Fstrong%3E%0D%3Cbr%3EMark%20Hulm%20(RSA)%20bt%20Erkin%20Darmenov%20(KAZ)%20%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3ECatchweight%20160lb%20%3C%2Fstrong%3E%0D%3Cbr%3ERustam%20Serbiev%20(BEL)%20bt%20Anar%20Huseyinov%20(AZE)%20%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3ECatchweight%20150lb%20%3C%2Fstrong%3E%3C%2Fp%3E%0A%3Cp%3EIslam%20Reda%20(EGY)%20bt%20Ernie%20Braca%20(PHI)%0D%3Cbr%3E%0D%3Cbr%3E%3Cstrong%3EFlyweight%20(women)%3C%2Fstrong%3E%20%0D%3Cbr%3EBaktygul%20Kurmanbekova%20(KGZ)%20bt%20Maria%20Eugenia%20Zbrun%20(ARG)%20%0D%3Cbr%3E%3C%2Fp%3E%0A
BUNDESLIGA FIXTURES

Saturday, May 16 (kick-offs UAE time)

Borussia Dortmund v Schalke (4.30pm) 
RB Leipzig v Freiburg (4.30pm) 
Hoffenheim v Hertha Berlin (4.30pm) 
Fortuna Dusseldorf v Paderborn  (4.30pm) 
Augsburg v Wolfsburg (4.30pm) 
Eintracht Frankfurt v Borussia Monchengladbach (7.30pm)

Sunday, May 17

Cologne v Mainz (4.30pm),
Union Berlin v Bayern Munich (7pm)

Monday, May 18

Werder Bremen v Bayer Leverkusen (9.30pm)

While you're here
Ferrari
%3Cp%3E%3Cstrong%3EDirector%3A%3C%2Fstrong%3E%20Michael%20Mann%26nbsp%3B%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStarring%3A%3C%2Fstrong%3E%20Adam%20Driver%2C%20Penelope%20Cruz%2C%20Shailene%20Woodley%2C%20Patrick%20Dempsey%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%203%2F5%3C%2Fp%3E%0A
Abu Dhabi race card

5pm Abu Dhabi Fillies Classic Prestige Dh110,000 1,400m

5.30pm Abu Dhabi Colts Classic Prestige Dh110,000 1,400m

6pm Abu Dhabi Championship Listed Dh180,000 1,600m

6.30pm Maiden Dh80,000 1,600m

7pm Wathba Stallions Cup Handicap Dh80,000 1,400m

7.30pm Handicap (TB) |Dh100,000 2,400m

EuropeGermany