Details
• Cybersecurity researchers at Palo Alto Networks’ Unit 42 said Iranian hackers targeted aviation, oil and gas firms in the US, Israel and the UAE through a fake recruitment campaign.
• The hackers used fake job postings, recruiter profiles and malware-infected video conferencing software to try to reach software engineers with deep access to company networks.
• In one case, the hackers impersonated a US airline while advertising a fake “senior software engineer” role. Researchers said the posting appeared to use AI-generated corporate language.
• The targets were strategically valuable because aviation data could help track flight movements linked to the Middle East, while oil and gas firms could offer insight into volatile energy markets during the conflict.
• Unit 42 said it does not believe the targeted aviation or oil and gas firms were successfully breached, though some other organisations in the wider campaign may have been compromised.
• US officials have been monitoring Iranian cyber activity closely since the conflict escalated, amid concerns Tehran could target critical infrastructure through cyber operations instead of direct military attacks.
• The Aviation Information Sharing and Analysis Center said the activity matched expected cyber threats linked to the war, including fake IT worker schemes and attempts to steal credentials.
• Iran-linked hacking groups have previously targeted airlines to monitor dissidents and regional travel activity, according to the reporting.
• Researchers said the group behind the campaign continued operating at a high pace despite reported Israeli strikes on facilities tied to Iran’s cyber warfare operations earlier this year.
What Else
The campaign shows how Iran can use cyber espionage as an asymmetric tool while under military pressure from the US and Israel. The next concern for aviation, energy and technology firms is whether similar fake recruitment schemes expand into broader attempts to steal credentials, map networks or gather intelligence from critical sectors.
