"Users of the app are particularly religious people and have [a] higher chance to be also pro-regime and within [the] body of the army. One important but seemingly ignored fact about this app is that it requests location access to operate. The availability of user location data and other app telemetry can be (ab)used in many different and interesting ways!"
"Push notifications are trusted by design. The entire model assumes that if you installed an app, the messages it sends are legitimate and trustworthy communications from the app developer, making users particularly vulnerable to manipulated messages distributed through compromised applications."
Israel reportedly hacked BadeSaba, a popular Iranian prayer calendar app with approximately 37 million users, to distribute messages encouraging military personnel to join opposition forces against the regime. The notifications stated "It's time for reckoning" and "Help has arrived." Security researchers identified the app as a strategic target because its users are predominantly religious individuals with higher likelihood of military affiliation and pro-regime sympathies. The app requests location access, providing hackers with valuable user telemetry data. Experts characterize this operation as a psychological operation rather than a traditional cyberattack, designed to influence Iranian society and security forces during ongoing warfare.
#cyberwarfare #psychological-operations #mobile-app-security #iran-israel-conflict #digital-propaganda
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]