Charleston Chapter – MOAA Charleston Chapter – MOAA
Charleston Chapter – MOAA Charleston Chapter – MOAA
Member Login    News    Support our Charities    Photos    Event Calendar      
Charleston Chapter – MOAA


Recent News:
(Published in last 30 days)


Charleston Chapter – MOAA
Date Posted:05/25/20
This Story Expires on: 09/30/20
Here Are the 2020 2021 Post 9/11 GI Bill Rates

Date Posted:05/25/20
This Story Expires on: 09/30/20
Pell Grant Limits Increase, Student Loan Interest Rates Decrease for 2020 2021

Date Posted:05/25/20
This Story Expires on: 07/31/20
Some Stimulus Payments Are Coming in the Form of Debit Cards

Date Posted:05/14/20
This Story Expires on: 06/14/20
VA cemeteries will open to the public on Memorial Day, but wreath laying ceremonies will be closed

Date Posted:05/14/20
This Story Expires on: 07/31/20
Meet the First Lady of Space Force: An interview with Mollie Raymond

Date Posted:05/14/20
This Story Expires on: 08/15/20
2 Lowcountry military installations change command

Date Posted:05/13/20
This Story Expires on: 07/31/20
'Astonishing': Veteran Military Pilots See First Survey Data on How Many Have Cancer

Date Posted:05/13/20
This Story Expires on: 07/31/20
Tricare Drops Telehealth Copays, Adds Phone Call Coverage in Emergency Measure

Date Posted:05/13/20
This Story Expires on: 07/31/20
This new site is all about money for military spouses

Date Posted:05/13/20
This Story Expires on: 07/31/20
How Trump honors our troops: A military wife’s perspective

Date Posted:05/13/20
This Story Expires on: 07/31/20
VA Opens New Phone Line for Survivor Education Benefits

Date Posted:05/11/20
This Story Expires on: 08/31/20
Pentagon Lifts Onerous Proof Requirements for Student Military Survivor Benefits

Date Posted:05/11/20
This Story Expires on: 08/31/20
Tutor.com Extends Free Tutoring for Military Families

Date Posted:05/11/20
This Story Expires on: 07/31/20
Here's the VA's 3 Part Plan to Resume Full Services for Veterans

Date Posted:05/11/20
This Story Expires on: 08/31/20
Tricare Dental Plan Benefits and Coverage

Date Posted:05/07/20
This Story Expires on: 07/31/20
Tricare Limits Some Prescription Refills During Pandemic

Date Posted:05/07/20
This Story Expires on: 07/31/20
Trump signs second bill protecting GI Bill benefits amid coronavirus outbreak

Date Posted:05/01/20
This Story Expires on: 06/30/20
Military Commissaries Limit Meat Purchases Amid Supply Chain Worries

Date Posted:05/01/20
This Story Expires on: 07/31/20
The Economic Stimulus Can Seriously Affect Your Retirement Funds

Date Posted:05/01/20
This Story Expires on: 06/30/20
Troops, Families Say They’re Worried About Planned Changes to Military Health System

Date Posted:04/24/20
This Story Expires on: 06/30/20
Thunderbirds, Blue Angels Team Up for Dramatic Salute to Coronavirus Responders

Date Posted:04/24/20
This Story Expires on: 07/31/20
Tutor.com Extends Free Tutoring for Military Families

Date Posted:04/24/20
This Story Expires on: 06/30/20
Some Veterans Need to Fill Out This Form ASAP to Get Their Stimulus Payment

Date Posted:04/24/20
This Story Expires on: 06/30/20
How to Get a New ID Card When Everything Is Shut Down

Date Posted:04/22/20
This Story Expires on: 06/30/20
Frameworks for dissent and principled resignation in the US military: A primer

Date Posted:04/22/20
This Story Expires on: 06/30/20
New Agreement Will Make it Easier for Doctors to Access Military, Veteran Health Records

Date Posted:04/22/20
This Story Expires on: 06/30/20
New House bill would grant Gold Star families access to commissary, base recreation

Date Posted:04/21/20
This Story Expires on: 06/30/20
Defense Health Agency to Beneficiaries: Stop Taking Zantac

Date Posted:04/21/20
This Story Expires on: 06/14/20
35,000 Military Retirees Will Soon See a Tricare Refund

Date Posted:04/16/20
This Story Expires on: 06/14/20
USPHS Ready Reserve Corps Becomes Law With the CARES Act

Date Posted:04/16/20
This Story Expires on: 06/30/20
COVID 19 and USERRA: Know Your Re Employment Rights

Date Posted:04/13/20
This Story Expires on: 06/30/20
Everything You Need to Know About Tricare and National Guard and Reserve Activation

Date Posted:04/08/20
This Story Expires on: 06/30/20
Tricare Must Waive Coronavirus Test Visit Copays, But Not Off Base Pharmacy Fees

Date Posted:04/08/20
This Story Expires on: 06/30/20
Pentagon Extends ID Card Expiration Dates, Allows Mail Order for Some

Date Posted:04/07/20
This Story Expires on: 06/14/20
Retirees, Active Duty Families Could Be Barred from Military Pharmacies over Pandemic

Date Posted:04/07/20
This Story Expires on: 06/14/20
Some Veterans May Need to Take This Extra Step to Get Their Stimulus Check

Date Posted:04/03/20
This Story Expires on: 06/30/20
Trump says VA won’t collect debts, will extend benefits deadlines amid coronavirus outbreak

Date Posted:03/23/20
This Story Expires on: 06/30/20
VA suspends funeral honors, large gatherings at cemeteries due to coronavirus

Date Posted:02/08/20
This Story Expires on: 11/15/20
Here’s your friendly election year reminder to stay away from politics while in uniform

Date Posted:10/11/19
This Story Expires on: 09/30/20
WARNING Hackers target job hunting service members, veterans with sham employment website

Date Posted:10/03/19
This Story Expires on: 07/31/20
VA Releases Survivors Quick Start Guide

7 Affordable Ideas for Military Care Packages

March 22 Luncheon Meeting

Military Star Card Questions & Answers

US Air Force Museum to Mark 75th Anniversary of Japan Raid

Chapter News   
Register for News Story Emails

WARNING Hackers target job hunting service members, veterans with sham employment website
Posted on: 10/11/19
This Story Expires on: 09/30/20
The bogus website prompted users to download an app that contained malicious malware that would allow the attacker to access a "significant amount of information," according to Cisco Talos.">

The bogus website prompted users to download an app that contained malicious malware that would allow the attacker to access a "significant amount of information," according to Cisco Talos.



  Veterans hunting for jobs may have thought “Hire Military Heroes” was just another jobs website that would help them find employment.

But in reality, the site prompted users to download an app containing malicious malware that would allow the attacker to access a plethora of information, according to cybersecurity researchers at Cisco Talos.

“The attacker retrieves information such as the date, time and drivers. The attacker can then see information on the system, the patch level, the number of processors, the network configuration, the hardware, firmware versions, the domain controller, the name of the admin, the list of the account, etc.,” Cisco Talos said in a blog post in September about the malware.

“This is a significant amount of information relating to a machine and makes the attacker well-prepared to carry out additional attacks,” Cisco Talos added.

The phony site shared a similar URL to the site “Hiring Our Heroes,” an employment site the U.S. Chamber of Commerce Foundation launched.

According to the security intelligence and research group, an actor called Tortoiseshell was responsible for the attack — the same actor Symantec identified being behind attempts targeting Saudi Arabian IT providers.

Cisco Talos and Symantec have not pointed a finger at Iran, but experts claim it’s likely Iran is the culprit. Multiple media reports also suggest the malign actor has ties to Iran.

For example, the National Guard Bureau issued a memorandum on Oct. 2 to service members instructing them to not visit the phony employment site, Stars and Stripes reported. The memorandum claimed that Iranian hackers were interested in getting into a DOD system.

  “They’re targeting active servicemembers looking for jobs with the promise of offering assistance for civilian employment once their service ends,” the memo said, according to Stars and Stripes. “The hackers are hoping one of their targets would use a DOD system to download and run the malware.”

The National Guard Bureau deferred to the Pentagon for comment when contacted by the Military Times. The Pentagon did not provide comment on the memo or whether DOD systems were compromised.

“As a matter of policy and for operational security, we do not discuss cyberspace operations, intelligence, or planning,” Elissa Smith, Department of Defense spokeswoman, said in a statement to the Military Times.

Christopher Burgess, who served with the CIA for more than 30 years, believes Iran was behind the attack because of the malware’s history targeting Saudi Arabian IT entities. In a blog post on ClearanceJobs, Burgess said the activity is “consistent with Iranian intelligence efforts given the ongoing Iran-Saudi hostilities.”

“This piece of cyberespionage was designed to compromise the owner’s machine AND allow the complete download of contents, when a [remote access trojan] piece of malware was installed,” Burgess said in an email to the Military Times. “What that permitted is to know everything the user had on their device and how they interacted with other devices. The information could be used to fill out the counterintelligence and operational mosaic of an adversary.”

Burgess also noted Iran already has some information on U.S. service members and their cyber activities, thanks to Monica Witt.

Witt, a former Air Force counterintelligence specialist who defected to Iran in 2013, was charged with espionage on behalf of Iran, according to an indictment that was unsealed in February. The indictment claims that she shared U.S. classified information with an Iranian government official and also compiled research on her former colleagues and coworkers in the U.S. Intelligence Community.

The information was then funneled into “target packages” to help Iran target the former colleagues, the indictment said.

Burgess doesn’t expect that this episode targeting service members and veterans is an isolated incident from Iran.

“They are not slouches when it comes to cyberespionage and they have shown their ability to conduct social engineering operations in the past. I would expect them to do so in the future,” Burgess said.

To prevent being targeted in future attacks, Burgess recommended veterans and others not download apps to devices — unless it’s from a trusted source.

“Do not click on links,” Burgess added. “Never share personal information with sites you have not validated. Your bank will never call, email or SMS for your account data. If something doesn't appear legit, check with the originator.”



Return to News Stories
Charleston Chapter – MOAA
Charleston Chapter – MOAA

· Copyright ©2020 Charleston Chapter – MOAA P.O. Box 70421 Charleston SC 29415 ·
· Contact Charleston Chapter – MOAA · Editorial and Privacy Policy · Webmaster · Browser and Email Settings ·