Iran Archives - Cyber Security Minute

A Suspected Cyberattack Paralyzes the Majority of Gas Stations Across Iran

Issued by: SecurityWeek

Nearly 70% of Iran’s gas stations went out of service on Monday following possible sabotage — a reference to cyberattacks, Iranian state TV reported. The report said a “software problem” caused the irregularity in the gas stations. It urged people not to rush to the stations that were still operational. Israeli media, including the Times…

Malware & Threats

FBI Warns of Iranian Cyber Firm’s Hack-and-Leak Operations

Issued by: Security Week

Previously known as Eeleyanet Gostar and Net Peygard Samavat, Emennet Pasargad is an organization that often changes its name to avoid US sanctions, and which is known for providing cybersecurity services to government entities in Iran. In November 2020, the US warned that Iranian hackers exploited known vulnerabilities to access voter registration data, and in…

Malware & Threats, Network Security, Software Security

NATO Condemns Alleged Iranian Cyberattack on Albania

Issued by: Security Week

“We stand in solidarity with Albania following the recent cyber attack on its national information infrastructure,” NATO allies said. “We strongly condemn such malicious cyber activities designed to destabilise and harm the security of an Ally, and disrupt the daily lives of citizens.” The alliance pledged to “support Albania in strengthening its cyber defence capabilities…

Malware & Threats

Exiled Iran Group Claims Tehran Hacking Attack

Issued by: Security Week

Iranian state media said earlier that the internal computer system of the municipality of Tehran was targeted in a “deliberate” shutdown Thursday in the latest apparent cyber attack in the country. The People’s Mujahedin of Iran (MEK), which is outlawed in Iran, said in a statement that their operatives inside the country had carried out…

Malware & Threats

Iran Suspects Israel and US Behind Fuel Cyber Attack

Issued by: Security Week

Tuesday’s attack “technically” resembles two previous incidents whose perpetrators “were unquestionably our enemies, namely the United States and the Zionist regime”, the Revolutionary Guards’ Gholamreza Jalali said. “We have analysed two incidents, the railway accident and the Shahid Rajaei port accident, and we found that they were similar,” Jalali, who heads a civil defence unit…

Malware & Threats

Iran-linked MalKamak Hackers Targeting Aerospace, Telcos With ShellClient RAT

Issued by: Security Week

Researchers have discovered a previously unknown advanced threat actor, probably of Iranian origin, using a previously undocumented RAT targeting largely aerospace and telecommunications organizations. They have named the group MalKamak, and the campaign Operation GhostShell. Cybereason first detected the threat actor engaged in cyber espionage with the unknown remote access trojan – which it called…

Malware & Threats

Iran-Linked ‘Silent Librarian’ Back at Phishing Universities

Issued by: Security Week

Also tracked as TA407 and COBALT DICKENS, the adversary was previously observed launching similar attacks for two years in a row. In 2018, the group set up fake login pages for 76 universities. In 2019, Silent Librarian targeted more than 60 universities in Australia, Canada, Hong Kong, Switzerland, the United States, and the United Kingdom….