Targeting of a U.S. presidential campaign
Date of report
  • October 2019
  • Believed to be the work of Phosphoros, also known as APT 35
A threat actor targeted the email accounts of an unnamed U.S. presidential campaign, current and former U.S. officials and journalists, and others. During a thirty-day period in August and September, Microsoft observed more than 2,700 attempts to identify the emails of specific customers and 241 hacks.  Four accounts were compromised, though not those connected to the presidential campaign or the officials. A threat actor linked to the Iranian government unsuccessfully attempted to break into President Donald J. Trump's reelection campaign, according to sources familiar with the incident. 
Suspected victims
  • An unnamed U.S. presidential campaign
Suspected state sponsor
  • Iran (Islamic Republic of)
Type of incident
  • Espionage
Target category
  • Government