Iran Has Stopped A Large Scale Infrastructure Attack

The Iranian AFTA Strategic Management Centre, which is the national  presidential strategic management centre, have stopped a widespread cyber attack on the country's infrastructure.  

According to a statement AFTA says it has  succeeded in fending off the cyber attack on the back of “timely action” taken by its security operations command centre. 

The cyber attackers apparently were planning to exploit a security gap in software most widely used by infrastructure organisations in Iran.

“The hackers were planning to exploit the security hole in one of the widely used applications at Iranian organisations to get access to the infrastructures and their data, inject them their own malware, and give them their desired commands,” said AFTA  in a statement . AFTA experts managed to discover the “clues and the behavioral patterns” used in the cyber raid and detect the ultimate targets, which included over 100 important e-services in both state and private sectors of the country.

AFTA claimed that they succeeded in denying permission for IP addresses from the Netherlands, US and UK from accessing "back doors" in the flawed software.

Iran’s state organisations and nuclear facilities have repeatedly been the target of cyber assaults by Israel and the United States. In one of the latest such acts of sabotage, an Israeli cyber raid caused a temporary outage at gas stations in large cities across Iran in October 2021. In 2011, the US and Israel collaborated in a cyber attack on Iran’s nuclear program, using a piece of malware known as Stuxnet

In December 2021 Iran's Ambassador to the United Nations underlined Tehran’s opposition to inference in the internal affairs of the states, saying that his country is itself a victim of cyberattacks by the US and Israel. “Iran has been the victim of a number of cyber-attacks, including the 2010 Stuxnet malware attacks against its critical infrastructure by the US and Israel. Since 2010, these illegal acts have intensified and still continue.... We believe that this Group is in the best position to address this irresponsible behavior and build upon the desire to end such reckless activities,” the ambassador said.

Iran says that like many other countries in the world, it is exposed to cyber threats, and the country has been one of the main targets of cyber attacks by enemies against its peaceful nuclear program, oil infrastructure and government institutions in recent years.

It also says that there is ample evidence that many attacks around the world using advanced cyber weapons are carried out jointly by the US National Security Agency (NSA), the Zionist regime and British intelligence agencies, including the Government Communications Headquarters (GCHQ), in some cases, criminal groups also carry out these attacks on their behalf, Iranian sources claim.

JPost:    IFPNews:    FarsNews:    MiddleEast24:     Iran Press

You Might Also Read: 

Israel & Iran Locked In Cyber Conflict:
 

« Elon Musk's Deal To Buy Twitter
Cyber Security Weak Points That Business Leaders Should Know About »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

Resecurity, Inc.

Resecurity, Inc.

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Information Security Group (ISG) - Royal Holloway

Information Security Group (ISG) - Royal Holloway

The Information Security Group, Royal Holloway, University of London, is an Academic Centres of Excellence in Cyber Security Research.

DataVantage

DataVantage

DataVantage data masking and data management software helps you prevent data breaches, pass compliance audits and meet regulatory requirements such as HIPAA and PCI DSS.

L J Kushner & Associates

L J Kushner & Associates

L.J. Kushner is a leading Information Security recruiting firm.

SecureBrain

SecureBrain

SecureBrain software and services help protect against Japanese-specific cybercrime and global internet security threats such as online fraud, phishing, drive-by downloads and malware attacks.

Fidus Information Security

Fidus Information Security

Fidus is a team of security professionals providing Penetration Testing and Cyber Security Consulting services throughout the UK and worldwide.

OpenText

OpenText

OpenText is a leader in Enterprise Information Management software and a portfolio of related solutions for Information Governance, Compliance, Information Security and Privacy.

Plurilock Security Solutions

Plurilock Security Solutions

Plurilock is a real-time cybersecurity solution that uses artificial intelligence to identify, prevent, and eliminate insider threats.

Inseego

Inseego

Inseego provides Enterprise SaaS solutions and IoT & Mobile solutions, which together form the backbone of intelligent, reliable and secure IoT services with deep business intelligence.

Pixalate

Pixalate

Pixalate is an omni-channel fraud intelligence company that works with brands and platforms to prevent invalid traffic and improve ad inventory quality.

Crayonic

Crayonic

Crayonic digital identity technologies protect and guarantee the identity of people and things.

Jandnet Recruitment

Jandnet Recruitment

Jandnet Recruitment is a small specialist company working in the IT sector. We recruit across all IT disciplines including cyber security and digital identity.

Sovereign Intelligence

Sovereign Intelligence

Sovereign Intelligence provides automated insight into the relative intensity of hidden Cyber, Brand, and Financial Risks to your company.

Scarlett Cybersecurity

Scarlett Cybersecurity

Scarlett Cybersecurity provide cybersecurity services to US private and public organizations with specific emphasis on compliance and cybersecurity incident prevention, detection, and response.

VikingCloud

VikingCloud

VikingCloud (formerly Sysnet Global Solutions) offers organizations an integrated cybersecurity and compliance solution to make informed, predictive, and cost-effective risk mitigation and prevention

Hubify

Hubify

Hubify is an experienced, service-driven technology company specialising in business connectivity across mobile, data, voice, cloud, & cyber security solutions.

Trustack

Trustack

Trustack services cover connectivity, infrastructure services, security, unified comms, agile working and more. Our team of consultants deliver customised solutions tailored to your needs.