<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1678611822423757&amp;ev=PageView&amp;noscript=1">
Defrag This

| Read. Reflect. Reboot.

Indictment of Iranian Hackers Highlights Data Security Concerns

Jeff Edwards| March 23 2018

| security

iran-phishing-attack

US Government officials have announced a round of sanctions and criminal indictments against an alleged Iranian hacker network that targeted hundreds of universities, businesses, NGOs, and Government organizations world-wide.

“Today, in one of the largest state-sponsored hacking campaigns ever prosecuted by the Department of Justice, we have unmasked criminals who normally hide behind the ones and zeros of computer code,” said Geoffrey S. Berman, U.S. attorney for the Southern District of New York, in a statement.

The indictment connects nine of 10 named individuals to the Mabna Institute, a tech firm based in Shiraz, a major center for Iran’s electronics industries.The Justice Department alleges that the Mabna Institute is frequently hired to hack international targets for Iranian universities and the Islamic Revolutionary Guard Corps (IGRC).

Charges leveled against the defendants include computer fraud, wire fraud, conspiracy, and identity theft.

Defendants named in the indictment cannot travel to more than 100 countries without fear of arrest and extradition to the United States.

Forget FTP! Start tranferring data the secure and compliant way. Trial MOVEit  today.

The sanctions also block any financial transactions with the defendants and will freeze any assets they may have under U.S. jurisdiction.

A Large-Scale Phishing Attack

The indictment alleges that the accused worked on behalf of the IRGC to hack the computer systems of approximately 320 universities in 22 countries, with 144 of those universities located in the United States.

Prosecutors allege that, between 2013 and 2017, the defendants targeted more than 100,000 accounts of university professors in a systematic phishing campaign, and succeeded in compromising some 8,000 accounts—a pretty impressive click-through rate, to be honest.

According to prosecutors, the hackers stole over 31 terabytes of data and intellectual property—or roughly 15 billion pages of text. Research valued at roughly $2 billion was stolen from universities alone, according to Deputy Attorney General Rod Rosenstein.

“That information was used by the Revolutionary Guard, or sold for profit in Iran,” said Rosenstein.

The IGRC, a military group under the direct control of Iran’s leadership, has frequently been accused of stealing intellectual property for its own purposes.

Topics: security

Leave a Reply

Your email address will not be published. Required fields are marked *

THIS POST WAS WRITTEN BY Jeff Edwards

Jeff Edwards is a tech writer and analyst with three years of experience covering Information Security and IT. Jeff has written on all things cybersecurity, from APTs to zero-days, and previously worked as a reporter covering Boston City Hall.

Free Trials

Getting started has never been easier. Download a trial today.

Download Free Trials

Contact Us

Let us know how we can help you. Focus on what matters. 

Send us a note

Subscribe to our Blog

Let’s stay in touch! Register to receive our blog updates.