The Shin Bet security agency has thwarted 85 Iranian cyberattacks against Israeli citizens since the beginning of 2025. The targets included senior figures in the Israeli defense establishment, as well as academics, media professionals, political figures and public personalities.
According to the Shin Bet and the National Cyber Directorate, there has been a significant rise in recent months in targeted phishing attempts aimed at gaining access to sensitive personal information, including home addresses, personal relationships and routine locations. This data is then used to plan attacks against individuals in Israel by Israeli-based terrorist cells recruited by Iran.
The Iranian operatives typically reach out via WhatsApp, Telegram or email, crafting a personalized cover story tailored to the target's field of work. The primary method involves sending a fraudulent link to a supposed Google Meet call. Once the user clicks the link, they are prompted to enter a username and password, which are then harvested by the attackers. This information enables access to Gmail accounts, additional passwords, images, geolocation data and other sensitive materials.
Other methods include fake applications that appear legitimate, or malicious files sent for reading or confirmation, which install spyware on the victim's computer.
A Shin Bet official stated: "We are witnessing continued, relentless efforts by hostile actors as part of the campaign Iran is waging against Israel. The public must remain vigilant and cautious, these cyberattacks can be prevented through awareness, skepticism and proper online conduct, particularly by avoiding clicks on unidentified links."
