HomeNewsNewsMicrosoft disables Lebanon-based hackers working with Iranian intelligence

Microsoft disables Lebanon-based hackers working with Iranian intelligence




Microsoft has detected and disabled a previously undocumented Lebanon-based activity group that is working with other actors affiliated with Iran’s Ministry of Intelligence and Security (MOIS) to attack organisations in Israel.


Microsoft Threat Intelligence Center (MSTIC) named the group ‘Polonium’.


The tech giant suspended more than 20 malicious OneDrive applications created by Polonium actors, notified affected organisations, and deployed a series of security intelligence updates that will quarantine tools developed by Polonium operators.


“Our goal is to help deter future activity by exposing and sharing the Polonium tactics with the community at large,” the company said in a statement.


The group is linked with Iranian government and such collaboration or direction from Tehran would align…

Read more…