Iran TerrorismMore Iranian Cyber Attacks Could Be on Their Way

More Iranian Cyber Attacks Could Be on Their Way


Iranian cyber attacks

Iran Focus

London, 20 Sep – Hackers associated with Iran launched a major campaign that targets Middle East energy firms and others ahead of the initial US sanctions in August, according to American cyber security firm FireEye, warning that further attacks could be coming before the upcoming sanctions against Iran ’s oil industry come into effect in November.

FireEye said on Tuesday that the “spear-phishing” email campaign allows hackers to steal information from infected computers, but caution that the malware used in similar to one that destroyed tens of thousands of terminals in Saudi Arabian oil company Saudi Aramco, deleting the hard drives and displaying a picture of a burning American flag on the monitors.

Alister Shepherd, a director for a FireEye subsidiary, said: “Whenever we see Iranian threat groups active in this region, particularly in line with geopolitical events, we have to be concerned they might either be engaged in or pre-positioning for a disruptive attack.”

FireEye refers to the Iranian hackers as APT33, an acronym for “advanced persistent threat”, citing that the group would target its victims by using phishing emails with fake job opportunities, even faking domain names to make the messages look legitimate. Often the email appears to be from a Middle East oil and gas company and the targets are organizations, from utilities to education, in the Middle East, North America and Japan.

FireEye previously discussed the group last year, but was keen to outline the dangers of the Iranian hackers, citing a tenfold increase in the number of emails sent out by APT33 between July 2 and July 29. They also warn that the numbers may be much higher still as FireEye’s data only include their own clients. They said the attacks appear targeted in nature.

FireEye also revealed that they believe that APT33 is being led by Iran for several reasons:

1. Hackers communicate in Farsi

2. Hackers use Iranian workweek (Sat-Wed) and communicate during Iranian office hours

3. Hackers are targeting firms in the US and its allies, including Bahrain, Kuwait, Oman, Qatar, Saudi Arabia and the United Arab Emirates

Shepherd said: “Since we started tracking APT33 in 2013, their sophistication has definitely improved… We wouldn’t put them on the same level as some of the more-sophisticated Russian groups, for instance, in terms of capability. But they are a very capable group and they manage to meet their objectives, which is to compromise institutions in both the government and private sector and steal data.”

Latest news

Iranian Regime Presidency Servers Taken Over By Dissidents, Exposing Regime Vulnerabilities

In a significant security breach, the official website of the Iranian regime’s presidency was taken over by Iranian dissidents...

Abolfazl Amir Ataei, 16, Dies After 8 Months In A Coma

Abolfazl Amir Ataei, a 16-year-old teenager in the Iranian capital of Tehran, died on Friday, May 26, after being...

Iran’s Regime’s New Hijab Bill Seeks to Silence Women

On May 21, Ebrahim Raisi’s government approved and sent a bill on "Chastity and Hijab" to Iran’s Parliament (Majlis)....

Iranian Opposition Condemns Release of Tehran’s Convicted Diplomat-Terrorist Assadollah Assadi

The recent prisoner exchange between Belgium and Iran, announced by the government of Oman, has sparked strong condemnation from...

World leaders call on Biden to adopt new Iran policy

In a joint letter, 109 former world leaders signed a letter calling for accountability in Iran and urging U.S....

The Unsettling Child Marriage Epidemic Sweeping Iran

The horrific scene of a man holding the severed head of his 17-year-old wife, Mona Heydari, in southwest Iran,...

Must read

Khamenei’s conglomerate thrived as sanctions squeezed Iran

Reuters: Seven years ago, the United Nations and Western...

China foreign minister heads to Geneva for Iran talks

AFP: Chinese Foreign Minister Wang Yi headed to Geneva...

You might also likeRELATED
Recommended to you