Iranian Nationals Charged and Sanctioned for Cyberattacks on US Government and Companies
The United States government has taken action against four Iranian nationals, accusing them of orchestrating a prolonged hacking campaign targeting various US government agencies and private companies. The alleged perpetrators, believed to be working on behalf of the Iranian government, have been charged and sanctioned for their involvement in these cyberattacks.
Indictment Reveals Extensive Hacking Campaign
According to an indictment made public on Tuesday, the four individuals—Hossein Harooni, Reza Kazemifar, Komeil Baradaran Salmani, and Alireza Shafie Nasab—engaged in cyberattacks against more than a dozen US-based companies and the US departments of the Treasury and State between 2016 and April 2021. The targeted companies were primarily contractors for the US Department of Defense, with access to sensitive information.
Alleged Perpetrators Linked to Iranian Government
The indictment alleges that the four individuals were employed by Mahak Rayan Afraz, a front company supporting the Iranian Islamic Revolutionary Guard Corps Cyber Electronic Command (IRGC-CEC). The IRGC-CEC has previously been connected to cyberattacks on water treatment facilities in the United States last year, highlighting the ongoing threat posed by Iranian state-sponsored hacking groups.
Sophisticated Hacking Techniques Employed
The group allegedly employed various tactics to carry out their cyberattacks, including spearphishing, which involves deceiving victims into clicking on malicious links that install malware on their computers. By gaining access to an administrator account belonging to a defense contractor, the group was able to create additional accounts and launch spearphishing attempts against other companies. Additionally, the four Iranian nationals are accused of using social engineering techniques to impersonate individuals and gain the trust of their victims.
“Iranian malicious cyber actors continue to target U.S. companies and government entities in a coordinated, multi-pronged campaign intended to destabilize our critical infrastructure and cause harm to our citizens,” Brian Nelson, the Department of the Treasury’s undersecretary for terrorism and financial intelligence, says in a statement. “The United States will continue to leverage our whole-of-government approach to expose and disrupt these networks’ operations.”
Charges and Sanctions Imposed
The US Department of Justice has charged the group with conspiracy to commit computer fraud, conspiracy to commit wire fraud, and wire fraud. In an effort to bring the individuals to justice, the DOJ is offering a reward of up to $10 million for information leading to their location or identification. Furthermore, the US Department of Treasury has imposed sanctions on the alleged perpetrators and the front company they used to carry out their attacks.
3 Comments
The plot thickens; FBI’s not just chasing ghosts anymore, they’re onto real specters!
Looks like cyber sleuthing just hit a whole new level, didn’t it?
Caught in the digital crosshairs, those hackers probably didn’t see that coming!