2024 US Elections & the Iranian cyber assault

As the FBI probes a suspected hack on Trump’s campaign, Iranian state-sponsored hackers intensify efforts to disrupt U.S. elections through phishing attacks, malware, and fake news sites

The FBI has initiated an investigation into a suspected hack targeting Donald Trump’s 2024 campaign, allegedly orchestrated by Iranian state-sponsored hackers linked to the Islamic Revolutionary Guard Corps (IRGC).

Art by Butcher Billy

This development aligns with warnings from Microsoft about escalating Iranian cyber activities aimed at disrupting U.S. elections. Iranian hackers are employing phishing attacks and disinformation tactics to sow discord among voters.

This situation is part of a broader pattern of Iranian influence operations, which include the use of sophisticated cyber tactics by groups like Sefid Flood, Mint Sandstorm, and GreenCharlie.
These groups have been actively targeting U.S. political campaigns, with GreenCharlie, in particular, linked to cyber espionage campaigns using advanced malware such as POWERSTAR and TAMECAT.

Recent reports have identified Iranian-run misinformation sites like Savannah Time and Nio Thinker that masquerade as legitimate news outlets, targeting U.S. voters with polarizing content on topics such as LGBTQ rights and the Israel-Hamas conflict.

niothinker[.]com
savannahtime[.]com
evenpolitics[.]com
teorator[.]com
westlandsun[.]com

urlscan.io

Nio Thinker, first began publishing in late October 2023. The site’s early publications focused on the Israel-Hamas conflict, but have increasingly shifted to the US elections in recent months. Its content caters to liberal audiences and includes sarcastic, long-winded articles insulting Trump including calling him an “opioid-pilled elephant in the MAGA china shop” and a “raving mad litigiosaur”

Furthermore, OpenAI recently reported banning accounts linked to an Iranian influence operation using ChatGPT to generate content on various topics, including the U.S. presidential campaign.

These combined efforts highlight the ongoing and significant threat posed by Iranian cyber operations to U.S. election integrity.

---

Sources & Additional Reading

1. https://blogs.microsoft.com/on-the-issues/2024/08/08/iran-targeting-2024-us-election/

2. https://blogs.microsoft.com/wp-content/uploads/prod/sites/5/2023/11/MTAC-Report-2024-Election-Threat-Assessment-11082023-2-1.pdf

3. https://therecord.media/trump-campaign-hack-iran-investigation

4. https://therecord.media/iranian-hackers-election-interference-microsoft

5. https://therecord.media/fbi-investigating-trump-campaign-hack