Spear Phishing in Tehran
“It wasn’t: The email had actually been sent from a hacker likely working on behalf of the Iranian government. The links to the requested forms contained malware designed to spy on its recipients — a human rights activist and likely others in the Iranian diaspora — on behalf of Tehran.
The email wasn’t an isolated attack against a potential dissident. Tehran is increasingly turning the tools of computer espionage against both exiles abroad and potential dissidents at home. Western researchers have found evidence that Iranian hackers have targeted the regime’s perceived opponents by hacking into their computers to install spy software, mapped out the millions of Iranian users of the encrypted messaging service Telegram, and targeted journalists for espionage.”