Iran Hacktivists Make Noise but Have Little Impact on War

Despite their claims, there hasn't been much hard evidence that Iran-aligned hacktivists have had a big effect in the Gulf region since the start of the war This article explores iran aligned hacktivists. . When something big happens in the world or in the country, both hackers and the cybersecurity community get to work.

Researchers and reporters always look for new threats after big news stories because bad cyber activity always comes after them. Those researchers and reporters then keep an eye on that activity, which starts a smaller, secondary news cycle. One of these classic examples is the war in Iran. "The actors tried to take advantage of the real documents (which were stolen from someone else) and the fact that figuring out where the breach happened can take a long time, which left the audience unsure.

Loveland says that threat actors often use these kinds of tricks to spread false stories. Related: China-Nexus hackers have been hiding in Southeast Asian military groups for years. High-profile attacks have holes.

Not all hacktivist groups leave behind evidence that is easy to look at, like downloadable data leaks. Cybersecurity analysts have had a hard time verifying most of the hacktivist activity reported online because lower-level threat actors are naturally drawn to cyberattacks that are hard to disprove or that can be interpreted in different ways. For example, it's easy to say that a website was attacked with a denial-of-service (DoS) attack if it stops researchers from checking its uptime.

"Even if a single attack seems small, the total effect is a huge drain on defensive resources and makes it easier for more advanced state-sponsored actors to move around without being seen. "Loveland thinks this view of events is too kind. He says that "none of the Iran-linked, pro-Iranian groups (including Handala) or state-sponsored groups are having any real effect on the Iran conflict, as confirmed by many independent assessments and our threat analysis."

"Iran and its proxies are running these kinds of campaigns for groups like "Nasir Security" to spread doubt and make it look like there are cyberattacks.