Israel’s security agency Shin Bet has reported a serious rise in cyber espionage attempts believed to be linked to Iranian intelligence operatives. The warning was issued through a joint statement by the Israel Security Agency, widely known as Shin Bet, and the Israel National Cyber Directorate, often referred to as the INCD. The agencies said they have identified and blocked hundreds of phishing attacks in recent months.
According to the statement, the scale and intensity of these cyber espionage attempts have increased, especially since the 12-day conflict with Iran last June. The campaign focused on senior officials, defense personnel, and civilians, showing a broad and carefully planned digital operation.
Alarming Increase in Iranian Cyber Espionage Activity
The Israel Security Agency (Shin Bet) and the Israel National Cyber Directorate (INCD) said the recent cyber espionage attempts were highly targeted. The attackers allegedly attempted to hack private Google accounts and messaging applications belonging to senior government officials and both current and former members of the defense establishment.
The targets were not limited to political leaders or military figures. Employees of defense industries, journalists, academics, and other civilians were also targeted. This wide range of victims suggests that the campaign aimed to gather valuable personal and professional information from multiple sectors of society.
Josh Shapiro reveals explosive Israel questions during Kamala Harris VP vetting
The agencies stated that the objective behind these cyber espionage attempts was to collect sensitive information. Such data could be used to support terrorism, espionage efforts, or influence operations. By gaining access to private accounts, attackers could monitor communications and gather intelligence without being physically present.
Officials described the activity as organized and persistent. They noted that the phishing attacks were not random messages sent to thousands of people. Instead, the messages were carefully crafted and directed at specific individuals, making them harder to detect.
How the Phishing Attacks Were Carried Out
Shin Bet and the INCD explained that the main method used in these cyber espionage attempts was phishing. Phishing is a type of cyber attack where criminals trick people into sharing private information such as passwords or security codes.
In these cases, attackers sent personalized messages that appeared genuine. The messages were often tailored to match the interests, profession, or recent activities of the targeted individual. This made the communication look trustworthy and increased the chances of success.
Hackers breach networks of Bumble, Panera, and Match in coordinated cyberattacks
Some attackers pretended to be known contacts or professional associates. Others sent invitations to meetings or shared documents that required downloading a file. In certain cases, the attackers posed as legitimate online services and asked users to enter their login details.
The primary goal was to steal passwords and two-factor authentication codes for platforms such as Google, Telegram, and WhatsApp. If attackers obtain both a password and a verification code, they can gain full control of an account. This means they could read emails, access private messages, view stored files, and monitor conversations.
The agencies emphasized that once access is gained, attackers can quietly collect information over time. This type of cyber espionage can continue without the victim realizing their account has been compromised.
Security Response and Protective Measures
The joint statement from the Israel Security Agency and the Israel National Cyber Directorate confirmed that hundreds of phishing attempts have been successfully blocked. The agencies said they acted quickly by issuing targeted alerts to individuals who were at risk.
They also conducted security briefings to help potential targets recognize suspicious messages and unusual account activity. In situations where unauthorized access was detected, steps were taken to remove the intrusions and secure the affected accounts.
EU freezes Israel sanctions after Trump-brokered peace deal — diplomacy
reshapes Middle East strategy
Shin Bet and the INCD urged users to strengthen their digital security. They recommended enabling two-step verification on email and messaging accounts, setting up recovery email addresses, and regularly reviewing connected devices and linked applications.
The agencies also advised people to remain cautious when receiving unsolicited messages. Users were warned not to click on unfamiliar links or share personal information without confirming the identity of the sender.
The reported surge in Iranian cyber espionage attempts highlights the growing role of digital platforms in intelligence operations. Israeli authorities continue to monitor online threats closely while working to protect officials and civilians from further phishing attacks.
