Iran Has Stopped A Large Scale Infrastructure Attack

The Iranian AFTA Strategic Management Centre, which is the national  presidential strategic management centre, have stopped a widespread cyber attack on the country's infrastructure.  

According to a statement AFTA says it has  succeeded in fending off the cyber attack on the back of “timely action” taken by its security operations command centre. 

The cyber attackers apparently were planning to exploit a security gap in software most widely used by infrastructure organisations in Iran.

“The hackers were planning to exploit the security hole in one of the widely used applications at Iranian organisations to get access to the infrastructures and their data, inject them their own malware, and give them their desired commands,” said AFTA  in a statement . AFTA experts managed to discover the “clues and the behavioral patterns” used in the cyber raid and detect the ultimate targets, which included over 100 important e-services in both state and private sectors of the country.

AFTA claimed that they succeeded in denying permission for IP addresses from the Netherlands, US and UK from accessing "back doors" in the flawed software.

Iran’s state organisations and nuclear facilities have repeatedly been the target of cyber assaults by Israel and the United States. In one of the latest such acts of sabotage, an Israeli cyber raid caused a temporary outage at gas stations in large cities across Iran in October 2021. In 2011, the US and Israel collaborated in a cyber attack on Iran’s nuclear program, using a piece of malware known as Stuxnet

In December 2021 Iran's Ambassador to the United Nations underlined Tehran’s opposition to inference in the internal affairs of the states, saying that his country is itself a victim of cyberattacks by the US and Israel. “Iran has been the victim of a number of cyber-attacks, including the 2010 Stuxnet malware attacks against its critical infrastructure by the US and Israel. Since 2010, these illegal acts have intensified and still continue.... We believe that this Group is in the best position to address this irresponsible behavior and build upon the desire to end such reckless activities,” the ambassador said.

Iran says that like many other countries in the world, it is exposed to cyber threats, and the country has been one of the main targets of cyber attacks by enemies against its peaceful nuclear program, oil infrastructure and government institutions in recent years.

It also says that there is ample evidence that many attacks around the world using advanced cyber weapons are carried out jointly by the US National Security Agency (NSA), the Zionist regime and British intelligence agencies, including the Government Communications Headquarters (GCHQ), in some cases, criminal groups also carry out these attacks on their behalf, Iranian sources claim.

JPost:    IFPNews:    FarsNews:    MiddleEast24:     Iran Press

You Might Also Read: 

Israel & Iran Locked In Cyber Conflict:
 

« Elon Musk's Deal To Buy Twitter
Cyber Security Weak Points That Business Leaders Should Know About »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Energy Sec

Energy Sec

EnergySec is a United States 501(c)(3) non-profit corporation formed to support energy sector organizations with the security of their critical technology infrastructures.

Grid32

Grid32

Grid32 provides independent computer system and physical security audit services to government and corporate clients of all sizes.

ThreatMark

ThreatMark

ThreatMark provides fraud detection solutions for digital banking and payments.

CSL Group

CSL Group

CSL solutions provide complete end-to-end connectivity services for Security, Fire, Telecare and other mission critical M2M/IoT applications.

DefCamp

DefCamp

DefCamp is the most important annual conference on Hacking & Information Security in Central Eastern Europe.

Cyjax

Cyjax

Cyjax monitors the Internet to identify the digital risks to your organisation, including cyber threats, reputational risks and the Darknet.

Pelion

Pelion

Pelion Connected Device Services are the easiest way to securely connect and manage your devices, allowing you to focus on forging your future.

Almond

Almond

Almond is positioned as a key independent French player in audit and consulting in the fields of Cybersecurity, Cloud and Infrastructure.

FortKnoxster

FortKnoxster

FortKnoxster is a cybersecurity company within the Crypto & FinTech space. Our encryption technologies are blockchain integrated.

Ankura Consulting Group

Ankura Consulting Group

Ankura is a global expert services and advisory firm that delivers services and end-to-end solutions in a wide range of areas including cybersecurity and digital transformation.

Asimily

Asimily

Asimily’s IoMT risk remediation platform holistically secures the mission-critical healthcare devices that deliver safe and reliable care.

Quzara

Quzara

Quzara provides trusted advisory services and highly adaptive cybersecurity services to federal, commercial and Defense Industrial Base customers to meet their security compliance and cyber needs.

ITC Federal

ITC Federal

ITC Federal delivers IT cybersecurity assessment services to support agencies in meeting their security strategies and federal security compliance goals.

TrafficGuard

TrafficGuard

TrafficGuard is an award-winning digital ad verification and fraud prevention platform.

CardinalOps

CardinalOps

The CardinalOps platform continuously assesses your detection posture and eliminates coverage gaps in your existing detection stack so you can easily implement a threat-informed defense.

Capzul

Capzul

Capzul are transforming the network security landscape with a new approach; creating virtually impenetrable networks, precluding cybercriminal attacks on your network ecosystem.