Microsoft’s latest intelligence report has revealed alarming efforts by Iranian state-linked groups to meddle in the 2024 US presidential election.
According to the report released by the Microsoft Threat Analysis Center (MTAC), Iranian operatives have significantly increased their influence activities, particularly through the creation of fake news websites targeting both left- and right-leaning voter groups.
Fake Sites Targeting Republicans, Democrats
The report details how these groups are using sophisticated methods to create content that resonates with specific voter demographics, stoking division and influencing public opinion. According to the tech-giant, one of the sites uncovered, “Nio Thinker,” is tailored for left-leaning voters.
It hosts articles that vehemently criticize former President Donald Trump, employing derogatory language such as calling him an “opioid-pilled elephant in the MAGA china shop” and a “raving mad litigiosaur.”
This type of inflammatory rhetoric is designed to further polarize the electorate and deepen existing divisions within the country.
On the other end of the political spectrum, another site named “Savannah Time” poses as a conservative news outlet, claiming to be a “trusted source for conservative news in the vibrant city of Savannah.”
This site focuses on hot-button issues like LGBTQ+ rights and gender reassignment, topics that are likely to provoke strong reactions from its target audience.
According to Microsoft, the content on these sites is likely being generated using AI-enabled services, with some articles even plagiarizing from legitimate US publications, adding a veneer of credibility to their deceitful operations.
In the words of Microsoft, “The evidence we found suggests the sites are using AI-enabled services to plagiarize at least some of their content from US publications.” This underscores the level of sophistication behind these operations, as the Iranian groups are not just creating false content but are also stealing and repurposing genuine content to make their sites appear more legitimate.
Beyond these influence campaigns, Microsoft has also identified other troubling activities by Iranian groups that suggest a broader strategy aimed at disrupting the US election process. One group has been laying the groundwork for operations that could escalate into more extreme actions, such as intimidation or inciting violence against political figures or groups. Microsoft’s report warns that this group’s ultimate goal may be “inciting chaos, undermining authorities, and sowing doubt about election integrity.”
Another alarming activity identified by the tech company involves a spear-phishing attempt linked to the Islamic Revolutionary Guard Corps (IRGC). In June, a group associated with the IRGC sent a spear-phishing email to a high-ranking official on a US presidential campaign. The email was sent from the compromised account of a former senior advisor and contained a malicious link that would route through a domain controlled by the attackers before reaching its intended destination.
Microsoft notes, “Within days of this activity, the same group unsuccessfully attempted to log into an account belonging to a former presidential candidate.”
In a separate incident, another Iranian group compromised the account of a county-level government employee in a swing state as part of a broader password spray operation. Although the group did not gain additional access beyond the single account, this activity is part of a larger pattern of Iranian operations focused on strategic intelligence collection, particularly in key sectors like satellite, defense, and health, often targeting US government organizations in swing states.
Sharing Intelligence to Combat Misinformation: Microsoft
Microsoft’s Threat Analysis Center, which tracks influence operations from nation-state groups around the world, has been closely monitoring these developments. Their report on Iran’s activities is part of Microsoft’s broader Democracy Forward initiative, which aims to protect democratic processes from foreign interference.
As the company stated, “We share intelligence like this so voters, government institutions, candidates, parties, and others can be aware of influence campaigns and protect themselves from threats.”
To counter these threats, Microsoft has been actively engaging with political candidates and parties, offering training and tools to help them safeguard their campaigns.
The company also emphasizes the importance of combating election-related deepfakes and misinformation, aiming to promote greater awareness and education among the public.
As the 2024 US presidential election draws nearer, the findings in Microsoft’s report serve as a stark reminder of the ongoing threats to democracy. It is crucial for all stakeholders—voters, government institutions, and political campaigns—to remain vigilant and proactive in defending against these sophisticated influence operations.