The Shin Bet internal security agency and the National Cyber Directorate warned on Thursday of a significant rise in phishing attacks by Iranian actors targeting Israeli citizens, particularly senior figures in defense, politics, academia, media and the public sector. Officials reported that 85 such attacks have been thwarted since the start of the year.
The attacks aim to infiltrate email accounts, computers and smartphones to gather personal details, such as home addresses, personal connections and frequently visited locations. This information could be used by hostile actors to plan attacks or recruit local operatives for hostile activities in Israel.
2 View gallery
A Hebrew WhatsApp exchange shows Iranian actor impersonating Government Secretary Yossi Fuchs
(Photo: Screenshot)
Iranian attackers typically approach targets through WhatsApp, Telegram or email, using tailored cover stories that align with the victim’s professional background to avoid suspicion.
Get the Ynetnews app on your smartphone: Google Play: https://bit.ly/4eJ37pE | Apple App Store: https://bit.ly/3ZL7iNv
Common methods include sending fake links to Google Meet sessions, where users are asked to provide login credentials that are then stolen. These credentials grant attackers access to Gmail accounts, passwords for other services, location data and personal photos stored in the cloud.
Additional tactics include using malware disguised as legitimate applications or embedding spyware in files sent for viewing or approval.
“We are witnessing relentless efforts by hostile actors in Iran’s ongoing campaign against Israel," a Shin Bet official said. "The public must remain vigilant and cautious. These cyberattacks can be prevented through awareness, suspicion and proper online safety practices, especially by avoiding unidentified links.”