The Shin Bet security agency revealed Monday that it has detected roughly 200 Iranian-orchestrated cyberattacks targeting Israeli citizens, including high-ranking public officials and notable public figures, such as attorney Yossi Fuchs. A senior Shin Bet official characterized the campaign as a significant escalation in Iran's ongoing operations against Israel, specifically designed to enable assassination attempts.
In a detailed briefing, the security service disclosed that it had identified an extensive Iranian phishing operation in recent months. The targets included senior defense establishment figures, political leadership, academic researchers, media professionals, journalists, and other prominent individuals.
The sophisticated campaign sought to compromise targets' digital footprint – including email accounts, computers, and mobile devices – with the ultimate goal of harvesting sensitive personal information. The attackers particularly focused on gathering residential addresses, personal connections, and routine location data. According to security officials, this intelligence was intended to support Iranian-directed operations within Israel, potentially executed through locally recruited cells. The Shin Bet and Israel Police have successfully prevented nine separate attempts by Iranian operators to recruit Israeli citizens for such operations in recent months.
The cyber operatives typically initiated contact through WhatsApp, Telegram, or email communications. Each approach was meticulously crafted with a personalized cover story matching the target's professional sphere, designed to appear legitimate and avoid triggering suspicion.
The technical aspect of the operation involved two primary attack vectors: persuading targets to download malware-infected applications or directing them to sophisticated phishing websites that mimicked legitimate services. These fake sites prompted targets to enter their email credentials, allowing the attackers to harvest login information and gain unauthorized access to their email accounts.
Following the discovery of this campaign and a comprehensive investigation that revealed its full scope and identified compromised individuals, the Shin Bet initiated a large-scale notification operation. This included alerting affected citizens, providing detailed security briefings, and issuing guidance on enhanced cybersecurity measures and personal safety protocols.
