State-sponsored Iranian hacking groups have been attempting to steal voter registration data from election sites in the U.S.
On October 30, the CISA and the FBI shed light on the hackers’ activities and alerted voters in a joint advisory. Several recommendations have been provided to keep all the applications updated and patched. There have also been instructions for disabling unused ports and services to minimize outside network exposure.
As per the Advisory, Iranian APT actors are trying to exploit misconfiguration and known vulnerabilities, such as SQL injection, web shell uploads, directory traversal and unique flaws in election websites, using the Acunetix vulnerability scanner and advanced open-source queries.