 **Former President [Donald Trump’s presidential campaign](https://www.donaldjtrump.com) said Saturday that it has been hacked and suggested Iranian actors were involved in stealing and distributing sensitive internal documents.**The [campaign](https://twitter.com/TrumpWarRoom) provided no specific evidence of Iran’s involvement, but the claim comes a day after Microsoft issued a report detailing foreign agents’ attempts to interfere in the U.S. campaign in 2024.It cited an instance of an Iranian military intelligence unit in June sending ‘a spear-phishing email to a high-ranking official of a presidential campaign from a compromised email account of a former senior advisor.’Trump campaign spokesperson Steven Cheung blamed the hack on ‘foreign sources hostile to the United States.’ A spokesperson for the National Security Council said in a statement that it takes any report of improper foreign interference ‘extremely seriously’ and condemns any government or entity that attempts to undermine confidence in U.S. democratic institutions, but said it deferred to the Justice Department on this matter.Iran’s mission to the United Nations, when asked about the claim of the Trump campaign, denied being involved. ‘We do not accord any credence to such reports,’ the mission told The Associated Press. ‘The Iranian government neither possesses nor harbors any intent or motive to interfere in the United States presidential election.’However, Iran long has been suspected of running hacking campaigns targeting its enemies in the Middle East and beyond. Tehran also long has [threatened to retaliate against Trump](https://www.reuters.com/world/middle-east/iran-vows-revenge-soleimani-killing-if-trump-not-put-trial-2022-01-03/) over the 2020 drone strike he ordered that killed prominent Revolutionary Guard Gen. Qassem Soleimani.The U.S. Justice Department this past week unsealed criminal charges against a Pakistani national with ties to Iran alleged to have plotted assassination attempts against political figures in the United States, including potentially Trump, and to have sought to hire purported hitmen who were actually undercover law enforcement officials. Court documents in that case pointedly noted a desire by Iran to conduct operations against perceived enemies of the regime and to avenge the killing of Soleimani.Politico first reported Saturday on the hack. The outlet reported that it began receiving emails on July 22 from an anonymous account. The source — an AOL email account identified only as ‘Robert’ — passed along what appeared to be a research dossier the campaign had apparently done on the Republican vice presidential nominee, Ohio Sen. JD Vance. The document was dated Feb. 23, almost five months before Trump selected Vance as his running mate. Advertisement. Scroll to continue reading. ‘These documents were obtained illegally’ and ‘intended to interfere with the 2024 election and sow chaos throughout our Democratic process,’ Cheung said.He pointed to the [Microsoft report issued Friday](https://www.securityweek.com/iran-is-accelerating-cyber-activity-that-appears-meant-to-influence-the-us-election-microsoft-says/) and its conclusions that ‘Iranian hackers broke into the account of a ‘high ranking official’ on the U.S. presidential campaign in June 2024, which coincides with the close timing of President Trump’s selection of a vice presidential nominee.”The Iranians know that President Trump will stop their reign of terror just like he did in his first four years in the White House,’ Cheung said, adding a warning that ‘any media or news outlet reprinting documents or internal communications are doing the bidding of America’s enemies and doing exactly what they want.’Cheung did not immediately respond to questions about the campaign’s interactions with Microsoft on the matter. Microsoft said Saturday it had no comment beyond its blog post and Friday report.In that report, Microsoft stated that ‘foreign malign influence concerning the 2024 US election started off slowly but has steadily picked up pace over the last six months due initially to Russian operations, but more recently from Iranian activity.’The analysis continued: ‘Iranian cyber-enabled influence operations have been a consistent feature of at least the last three U.S. election cycles. Iran’s operations have been notable and distinguishable from Russian campaigns for appearing later in the election season and employing cyberattacks more geared toward election conduct than swaying voters.”Recent activity suggests the Iranian regime — along with the Kremlin — may be equally engaged in election 2024,’ Microsoft concluded.Specifically, the report detailed that in June 2024, an Iranian military intelligence unit, [Mint Sandstorm](https://www.securityweek.com/iranian-cyberspies-target-governments-ngos-with-new-backdoors/), sent a phishing email to an American presidential campaign via the compromised account of a former adviser.’The phishing email contained a fake forward with a hyperlink that directs traffic through an actor-controlled domain before redirecting to the listed domain,’ the report states.Vice President Kamala Harris’ campaign did not immediately respond to a request for comment on the reported hacking or on the Democratic nominee’s cybersecurity protocols.**Related** : [Iran Is Accelerating Cyber Activity That Appears Meant to Influence the US Election, Microsoft Says](https://www.securityweek.com/iran-is-accelerating-cyber-activity-that-appears-meant-to-influence-the-us-election-microsoft-says/)**Related** : [Iranian Cyberspies Hit Targets With New Backdoors](https://www.securityweek.com/iranian-cyberspies-target-governments-ngos-with-new-backdoors/)  Written By [Associated Press](https://www.securityweek.com/contributors/associated-press/ ‘Posts by Associated Press’)
More from [Associated Press](https://www.securityweek.com/contributors/associated-press/ ‘Posts by Associated Press’)———————————————————————————————————————* [Microsoft Hits Back at Delta After the Airline Said Last Month’s Tech Outage Cost It $500 Million](https://www.securityweek.com/microsoft-hits-back-at-delta-after-the-airline-said-last-months-tech-outage-cost-it-500-million/)* [French Museum Network Hit by Ransomware Attack, but No Disruptions Are Reported at Olympic Events](https://www.securityweek.com/french-museum-network-hit-by-ransomware-attack-but-no-disruptions-are-reported-at-olympic-events/)* [CrowdStrike and Delta Fight Over Who’s to Blame for the Airline Canceling Thousands of Flights](https://www.securityweek.com/crowdstrike-and-delta-fight-over-whos-to-blame-for-the-airline-canceling-thousands-of-flights/)* [Justice Department Sues TikTok, Accusing the Company of Illegally Collecting Children’s Data](https://www.securityweek.com/justice-department-sues-tiktok-accusing-the-company-of-illegally-collecting-childrens-data/)* [The European Union’s World-First Artificial Intelligence Rules Are Officially Taking Effect](https://www.securityweek.com/the-european-unions-world-first-artificial-intelligence-rules-are-officially-taking-effect/)* [Senate Passes Bill to Protect Kids Online and Make Tech Companies Accountable for Harmful Content](https://www.securityweek.com/senate-passes-bill-to-protect-kids-online-and-make-tech-companies-accountable-for-harmful-content/)* [Meta Agrees to $1.4B Settlement With Texas in Privacy Lawsuit Over Facial Recognition](https://www.securityweek.com/meta-agrees-to-1-4b-settlement-with-texas-in-privacy-lawsuit-over-facial-recognition/)* [North Korean Charged in Cyberattacks on US Hospitals, NASA and Military Bases](https://www.securityweek.com/north-korean-charged-in-ransomware-attacks-on-american-hospitals/)Latest News———–* [In Other News: KnowBe4 Product Flaws, SEC Ends MOVEit Probe, SOCRadar Responds to Hacking Claims](https://www.securityweek.com/in-other-news-knowbe4-product-flaws-sec-ends-moveit-probe-socradar-responds-to-hacking-claims/)* [Iran Is Accelerating Cyber Activity That Appears Meant to Influence the US Election, Microsoft Says](https://www.securityweek.com/iran-is-accelerating-cyber-activity-that-appears-meant-to-influence-the-us-election-microsoft-says/)* [Warnings Issued Over Cisco Device Hacking, Unpatched Vulnerabilities](https://www.securityweek.com/warnings-issued-over-cisco-device-hacking-unpatched-vulnerabilities/)* [Vulnerability Allowed Eavesdropping via Sonos Smart Speakers](https://www.securityweek.com/vulnerability-allowed-eavesdropping-via-sonos-smart-speakers/)* [Physical Security Firm ADT Confirms Hack and Data Breach](https://www.securityweek.com/physical-security-firm-adt-confirms-hack-and-data-breach/)* [CrowdStrike Dismisses Claims of Exploitability in Falcon Sensor Bug](https://www.securityweek.com/crowdstrike-dismisses-claims-of-exploitability-in-falcon-sensor-bug/)* [Stolen Credentials Have Turned SaaS Apps Into Attackers’ Playgrounds](https://www.securityweek.com/stolen-credentials-have-turned-saas-apps-into-attackers-playgrounds/)* [After the Dust Settles: Post-Incident Actions](https://www.securityweek.com/after-the-dust-settles-post-incident-actions/)  #### TrendingDaily Briefing Newsletter————————-Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. [Virtual Event Cloud -& Data Security Summit——————————————-](https://register.securityweek.com/cloud-security) July 17, 2024Learn how to utilize tools, controls, and design models needed to properly secure cloud environments.[Register](https://register.securityweek.com/cloud-security) [Event: ICS Cybersecurity Conference———————————–](https://www.icscybersecurityconference.com) Oct. 21-24, 2024 -| AtlantaThe leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.[Register](https://www.icscybersecurityconference.com) #### People on the MoveAmeris Bank has hired Jorge Perez as CISO. Pamela Golden has joined Dashlane as Senior Vice President of People and Jon Cho has joined as Senior Vice President of Product and Partnerships. AI security firm CalypsoAI has appointed Donnchadh Casey as CEO.[More People On The Move](/industry-moves) #### Expert Insights[After the Dust Settles: Post-Incident Actions———————————————](https://www.securityweek.com/after-the-dust-settles-post-incident-actions/)  After a cybersecurity incident, what should organizations do to learn from it and improve their security posture for the future? [(Marc Solomon)](https://www.securityweek.com/contributors/marc-solomon/)[Secure by Default: What It Means for the Modern Enterprise———————————————————-](https://www.securityweek.com/secure-by-default-what-it-means-for-the-modern-enterprise/)  What does ‘secure by default’ mean for the average company as you implement security systems and protocols? [(Matt Honea)](https://www.securityweek.com/contributors/matt-honea/)[Fighting Back Against Multi-Staged Ransomware Attacks Crippling Businesses————————————————————————–](https://www.securityweek.com/fighting-back-against-multi-staged-ransomware-attacks-crippling-businesses/)  Modern ransomware attacks are multi-staged and highly targeted. First, attackers research the target organization and its employees. [(Stu Sjouwerman)](https://www.securityweek.com/contributors/stu-sjouwerman/)[AI in the Enterprise: Cutting Through the Hype and Assessing Real Risks———————————————————————–](https://www.securityweek.com/ai-in-the-enterprise-cutting-through-the-hype-and-assessing-real-risks/)  The introduction of AI can bring benefits to the enterprise while not introducing additional risk that is beyond acceptable levels. [(Joshua Goldfarb)](https://www.securityweek.com/contributors/joshua-goldfarb/)[Using Threat Intelligence to Predict Potential Ransomware Attacks—————————————————————–](https://www.securityweek.com/using-threat-intelligence-to-predict-potential-ransomware-attacks/)  The risk of suffering a ransomware attack is high and organizations must take proactive steps to protect themselves and minimize the impact of a potential breach. [(Marc Solomon)](https://www.securityweek.com/contributors/marc-solomon/)
Related Tags:
NAICS: 921 – Executive
Legislative
Other General Government Support
NAICS: 54 – Professional
Scientific
Technical Services
NAICS: 513 – Publishing Industries
NAICS: 541 – Professional
Scientific
Technical Services
NAICS: 518 – Computing Infrastructure Providers
Data Processing
Web Hosting
Related Services
NAICS: 92 – Public Administration
NAICS: 51 – Information
Phosphorus
ITG18
Associated Indicators: