Ahead Of The US Election, Iranian Hackers 'Cotton Sandstorm' Actively Monitoring Sites
JAKARTA - Iran's hacker groups are actively exploring websites related to US elections and American media outlets ahead of election day, according to Microsoft's blog.
The researchers said the activity showed preparations for more direct influence operations.
The hackers, dubbed Cotton Sandstorm by Microsoft and linked to Iran's Islamic Revolutionary Guard Corps, carried out limited reconnaissance and investigations into several election-related websites in several unnamed states, the report said.
In May, they also scanned an unidentified US news outlet to understand its vulnerabilities.
"Cotton Sandstorm will increase its activity ahead of the election given the group's operational tempo and the history of election interference," the researchers wrote.
This development is very concerning because of the group's efforts in the past.
Iran's mission to the United Nations has yet to comment. In recent comments, they denied being involved in hacking activities related to the 2024 election.
SEE ALSO:
In 2020, Cotton Sandstorm launched a different influence operation through cyberspace shortly before the last presidential election. Disguised as far-right "Proud Boys", hackers sent thousands of emails to Florida residents, threatening them to "choose Trump or something else!".
The group also released videos on social media, purported to be from hacktivists, showing they were investigating the electoral system. While the operation never affected the individual voting system, the goal was to cause chaos, confusion and doubt, senior US officials said at the time.
After the 2020 elections, Cotton Sandstorm also ran separate operations that prompted violence against US election officials denying widespread voter fraud claims, Microsoft said.
The Office of the Director of National Intelligence, which coordinates federal efforts to defend elections from foreign influences, has not commented.