Meta Takes Action Against Malicious WhatsApp Accounts
Meta has recently discontinued WhatsApp accounts linked to “a minor group of probable social engineering efforts” on its platform. In the latest report, the company indicated that it traced these activities back to APT42 (also referred to as UNC788 and Mint Sandstorm), a group previously associated by the FBI with phishing schemes aimed at members associated with former President Trump and Vice President Harris. The dubious actions were reportedly focused on individuals in regions such as Israel, Palestine, Iran, the United States, and the UK, primarily targeting political and diplomatic figures connected to both presidential factions.
Techniques Used by Malicious Actors
The perpetrators operating on WhatsApp masqueraded as tech support agents from well-known companies such as Google, Microsoft, Yahoo, and AOL. However, Meta did not disclose specific methods these deceptive actors employed to breach their targets‘ accounts. Some impacted individuals responded by alerting Meta about this suspicious activity which prompted an immediate investigation by the company. Fortunately, Meta believes that these malicious attempts were largely ineffective and claims there is no evidence indicating any of their targets had their accounts compromised. Nonetheless, they have reported this wave of unlawful activity to law enforcement authorities while also providing updates to both presidential campaigns.
Ongoing Threats from APT42
In parallel developments earlier this month, Google released a report highlighting how APT42 has been focusing on notable users in Israel and America for several years. Their findings revealed “futile attempts” aimed at breaching accounts belonging to individuals tied closely with President Biden’s administration alongside those affiliated with Trump’s past administration. While Google’s analysis delineated APT42’s attacks as largely unsuccessful overall—one high-profile case stands out: Roger Stone—a prominent ally of Trump who was successfully targeted via phishing tactics leveraged by Iranian hackers who gained access using his account details later for further phishing expeditions directed at his contacts.
As cyber threats remain pervasive within our digital landscape—especially related to significant political events—the need for vigilance against such entities is more crucial than ever before.
This article originally appeared on Engadget at
Source
