Arab Press

بالشعب و للشعب
Thursday, Jul 16, 2026

Iran-backed hackers stage phishing campaign against activists, journalists: HRW

Iran-backed hackers stage phishing campaign against activists, journalists: HRW

Iran-backed hackers have staged a targeted campaign against more than a dozen high-profile human rights activists, journalists, academics and government officials, Human Rights Watch said.
The organization found that a coordinated phishing attack had been launched by an Iran-linked hacking entity known as APT42, believed to be a cyberespionage group.

The HRW report said that two of its employees were targeted, alongside 18 other people, resulting in the hacking of emails belonging to three individuals.

APT42 gained access to the emails, cloud storage, calendars and contacts of a US newspaper correspondent based in the Middle East, a Gulf-based women’s rights activist as well as a refugee advocate in Lebanon.

HRW said that the phishing attack was launched via WhatsApp, with 15 of the targets receiving suspicious messages between September and November this year.

The message, disguised as a conference invitation, allowed APT42 to gain access to the Google accounts of the three victims after they were invited to enter their two-factor authentication details on false pretenses.

Iran has long engaged in phishing attempts as part of its cyberwarfare strategy.

Since 2010, hackers and espionage groups linked to the regime in Tehran have successfully hacked and leaked the data of government, military and business targets around the world.

In September, APT42 members were sanctioned by the US Office of Foreign Assets Control at the Treasury Department.

Google as well as cybersecurity businesses Recorded Future and Proofpoint have said that APT42 operates on behalf of Iranian authorities.

Earlier this year, cybersecurity company Mandiant said that the group’s activities were directed by Iran’s Islamic Revolutionary Guard Corps.

APT42 uses sophisticated social engineering strategies in disguising phishing attempts, HRW said.

In gaining the trust of victims, APT42 members use the real information of conference organizers to create fake accounts and contact high-profile activists and officials.

Previous attacks have seen the group impersonate members of the Munich Security Conference and the G20 Think 20 Summit in Saudi Arabia to contact targets and launch phishing attacks.

Abir Ghattas, information security director at HRW, said: “Iran’s state-backed hackers are aggressively using sophisticated social engineering and credential harvesting tactics to access sensitive information and contacts held by Middle East-focused researchers and civil society groups.

“This significantly increases the risks that journalists and human rights defenders face in Iran and elsewhere in the region.”

She added: “In a Middle East region rife with surveillance threats for activists, it’s essential for digital security researchers to not only publish and promote findings, but also prioritize the protection of the region’s embattled activists, journalists and civil society leaders.”
Newsletter

Related Articles

Arab Press
0:00
0:00
Close
Spain in Ecstasy: "We Feel Unbeatable, We Taught the Whole World a Lesson"
Harvard Astrophysicist to Lead U.S. Scientific Advisory on Unidentified Aerial Phenomena
Emergency Sirens Activated Across Bahrain as Interior Ministry Issues Shelter Directives
World Cup Visitors Turn American Big-Box Stores Into Souvenir Stops
Netflix Weighs Always-On Channels, Bundles and Short-Form Video
The AI Invoice Shock: Layoffs Didn't Save Managers Money — They Cost Them More
Concern: Sexually Transmitted Bacterium Among Men Develops Antibiotic Resistance
Passenger Partially Pulled Out of Ryanair Jet After Cabin Window Fails Mid-Flight
Severe Heatwave Drives Dangerous Ground-Level Ozone Pollution Across Two Thirds of European Union
The Physical and Electronic Barriers Disrupting Domestic Wireless Networks
France and Morocco Open World Cup Quarter-Finals as Collina Defends Refereeing
Tech Pulse: The Future of AI and Screen Culture
Global News Briefing: Escalating Geopolitical Tensions and Corporate Shakeups
Global News Brief: Escalating Conflicts, Public Health Crises, and World Cup Drama
Europe's Growing Struggle with Extreme Heat and Air Conditioning
Anthropic Reengineers Agentic Architecture to Shift Autonomous Workplace Automation to the Cloud
Logic Flaw in Windows 11 Permission Architecture Silently Consumes Hundreds of Gigabytes of Local Storage
Apple Advances Late-Stage Operating Systems with Fourth Beta Deployments
Global Crisis Alert: Escalating Middle East Tensions and UK Political Upheaval
Japanese Technology Firm Fujitsu Launches Advanced Artificial Intelligence Tool for Corporate Disclosures
South Africa Officially Launches Nationwide Campaign for Highly Contested Local Government Elections
United Kingdom Commits Additional Funding for Unexploded Ordnance Clearance in Laos
Singapore Announces Stringent New Greenhouse Gas Regulations for Commercial Cooling Systems
Cambodia and Thailand Hold High-Level Border Security Talks at United Nations Headquarters
Myanmar Military Government and China Sign Major Agreement to Upgrade Media and Cultural Cooperation
Knife Attack at Swiss Train Station Leaves Three Injured in Suspected Act of Domestic Terrorism
Transnational Extortion Gang Threatens Canadian Police With Army of One Thousand Armed Operatives
Australia Imposes Forty-Two-Day Quarantine on Cruise Ship Passengers Following Deadly Hantavirus Outbreak
International Monetary Fund Unlocks Seven Hundred Million United States Dollars for Sri Lanka Following Economic Reforms
Australia Launches Record One Point Four Billion Dollar Lawsuit Against Chemical Giant 3M Over Contamination
China and Canada Foreign Ministers Meet in Ottawa in Effort to Stabilize Strained Diplomatic Ties
Indonesia Demands Urgent United Nations Security Council Reform Amid Escalating Global Conflicts
Extreme Weather Patterns Trigger Severe Drought in Madagascar and Destructive Flooding in East Africa
Indian State of Karnataka Faces Political Upheaval as Chief Minister Siddaramaiah Abruptly Resigns
Philippines and Japan Reaffirm Defense Ties as Crucial for Indo-Pacific Regional Stability
Norway Joins French Nuclear Deterrence Initiative in Major Shift for European Security Architecture
Global Critical Mineral Alliances Expand as Western Nations Move to Counter Chinese Supply Dominance
United States Imposes Fifty Percent Tariffs on Mexican Steel and Aluminum Ahead of Trade Pact Review
European Union and China Head Toward Major Trade Conflict Over Clean Technology Exports
United States Economic Growth Severely Downgraded to One Point Six Percent as Stagflation Fears Mount
World Health Organization Warns Central African Ebola Epidemic is Outpacing Containment Efforts
United States Treasury Department Conditions Sanctions Relief on Reopening of the Strait of Hormuz
Iranian Air Defenses Intercept and Destroy United States Military Drone Over Bushehr Province
Iranian Armed Forces Launch Ballistic Missiles Toward Unspecified Targets Prompting Regional Condemnation
United Nations Secretary-General Warns Global Order Facing Highest Level of Conflict Since 1945
Israel Issues Sweeping Evacuation Orders in Southern Lebanon Amid Intensified Hezbollah Conflict
Russia Announces Systemic Military Strikes Targeting Ukrainian Defense and Energy Infrastructure
United States and Iranian Negotiators Reach Draft Agreement to Extend Ceasefire and Resume Nuclear Talks
United Nations Security Council Deeply Divided Over United States Capture of Venezuelan President
US and Iran Exchange Direct Military Strikes Amid Fragile Gulf Ceasefire
×