Iran Has Stopped A Large Scale Infrastructure Attack

Uploaded on 2022-04-26 in NEWS-Cybersecurity News, INTELLIGENCE-Hot Spots-Iran, FREE TO VIEW, TECHNOLOGY--Hackers

The Iranian AFTA Strategic Management Centre, which is the national  presidential strategic management centre, have stopped a widespread cyber attack on the country's infrastructure.  

According to a statement AFTA says it has  succeeded in fending off the cyber attack on the back of “timely action” taken by its security operations command centre. 

The cyber attackers apparently were planning to exploit a security gap in software most widely used by infrastructure organisations in Iran.

“The hackers were planning to exploit the security hole in one of the widely used applications at Iranian organisations to get access to the infrastructures and their data, inject them their own malware, and give them their desired commands,” said AFTA  in a statement . AFTA experts managed to discover the “clues and the behavioral patterns” used in the cyber raid and detect the ultimate targets, which included over 100 important e-services in both state and private sectors of the country.

AFTA claimed that they succeeded in denying permission for IP addresses from the Netherlands, US and UK from accessing "back doors" in the flawed software.

Iran’s state organisations and nuclear facilities have repeatedly been the target of cyber assaults by Israel and the United States. In one of the latest such acts of sabotage, an Israeli cyber raid caused a temporary outage at gas stations in large cities across Iran in October 2021. In 2011, the US and Israel collaborated in a cyber attack on Iran’s nuclear program, using a piece of malware known as Stuxnet

In December 2021 Iran's Ambassador to the United Nations underlined Tehran’s opposition to inference in the internal affairs of the states, saying that his country is itself a victim of cyberattacks by the US and Israel. “Iran has been the victim of a number of cyber-attacks, including the 2010 Stuxnet malware attacks against its critical infrastructure by the US and Israel. Since 2010, these illegal acts have intensified and still continue.... We believe that this Group is in the best position to address this irresponsible behavior and build upon the desire to end such reckless activities,” the ambassador said.

Iran says that like many other countries in the world, it is exposed to cyber threats, and the country has been one of the main targets of cyber attacks by enemies against its peaceful nuclear program, oil infrastructure and government institutions in recent years.

It also says that there is ample evidence that many attacks around the world using advanced cyber weapons are carried out jointly by the US National Security Agency (NSA), the Zionist regime and British intelligence agencies, including the Government Communications Headquarters (GCHQ), in some cases, criminal groups also carry out these attacks on their behalf, Iranian sources claim.

JPost:    IFPNews:    FarsNews:    MiddleEast24:     Iran Press

You Might Also Read: 

Israel & Iran Locked In Cyber Conflict:
 

« Elon Musk's Deal To Buy Twitter
Cyber Security Weak Points That Business Leaders Should Know About »

ManageEngine
CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

Practice Labs

Practice Labs

Practice Labs is an IT competency hub, where live-lab environments give access to real equipment for hands-on practice of essential cybersecurity skills.

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

NCC Group

NCC Group

NCC Group is a global cyber and software resilience business operating across multiple sectors, geographies and technologies.

CircleCI

CircleCI

CircleCI’s platform allows developers to rapidly release code (for web and mobile apps) they trust by automating the build, test, and deploy process.

CyberScout

CyberScout

Cyberscout delivers the latest cybersecurity education, protection and resolutions services. We also provide swift incident response services around the world.

Assured Information Security (AIS)

Assured Information Security (AIS)

AIS is committed to providing our customers with critical information security products, services, and training. We support diverse needs throughout business and industry.

Assured Enterprises

Assured Enterprises

Assured Enterprises provides comprehensive cyber risk identification, management and mitigation across all platforms.

Abion

Abion

At Abion (formerly BRANDIT), we empower your business by providing comprehensive brand protection and web security services.

DMARC360

DMARC360

DMARC360 analyzes your email traffic patterns and sources, rapidly deploys email authentication protocols and monitors your email domains with automated recommendations and incident response.

British Security Industry Association - CySPAG

British Security Industry Association - CySPAG

CySPAG is a special interest group within the British Security Industry Association (BSIA) focused on reducing the risk of product related cybercrime.

Catalogic Software

Catalogic Software

Catalogic helps clients backup, recover, manage, and protect their data across their enterprise and cloud environments with Smart Data Protection solutions.

Incyber

Incyber

Incyber is a fully integrated network and cybersecurity solutions provider contracted to safeguard public and private enterprise, high value data and sensitive industries.

Oz Forensics

Oz Forensics

Oz Forensics is a global leader in preventing biometric and deepfake fraud. It is a developer of facial Liveness detection for Antifraud Biometric Software with high expertise in the Fintech market.

Twinstate Technologies

Twinstate Technologies

Twinstate Technologies specializes in cybersecurity, proactive IT, and hosted and on-premise voice solutions.

Boston Government Services (BGS)

Boston Government Services (BGS)

Boston Government Services is an engineering, technology, and security firm providing mission-focused solutions for the clean energy, nuclear, and federal programs markets.

Invary

Invary

Invary's expert Runtime Integrity solution, powered by NSA-licensed technology, verifies the security and confidentiality of your system.

Netarx

Netarx

Netarx provide real-time deepfake detection for enterprise voice, video and email.

DataBee

DataBee

DataBee, a Comcast Company, brings to market an enterprise-ready security data fabric that delivers connected compliance and security data that works for everyone.