Iranian Hackers Target U.S. Election Sites: Microsoft Report
Microsoft has reported that an Iranian hacking group, linked to Iran's Revolutionary Guard, is actively targeting U.S. election-related websites and media outlets as the presidential election approaches. This group, referred to as “Cotton Sandstorm,” has been conducting reconnaissance and scanning activities on various election-related platforms in several swing states. According to Microsoft researchers, this uptick in activity suggests preparations for direct influence operations aimed at the upcoming elections.
The report highlights that Cotton Sandstorm previously engaged in cyber influence operations during the 2020 presidential election, attempting to create chaos and confusion without directly affecting voting systems. A spokesman for the Iranian mission to the United Nations has dismissed these allegations as baseless, asserting that Iran has no intention of interfering in U.S. elections.
Past Activities and Legal Consequences
In addition to the current activities, Cotton Sandstorm is known for a separate operation post-2020 election that incited violence against U.S. election officials who refuted claims of widespread voter fraud. The U.S. Department of Justice has previously charged three members of the Iranian Revolutionary Guard for their involvement in hacking attempts aimed at disrupting Donald Trump’s 2024 campaign. Attorney General Merrick Garland stated that these defendants orchestrated a significant hacking operation to undermine the electoral process in the U.S. using phishing and social engineering techniques to breach the accounts of U.S. officials and political campaign associates.
