Iranian Hackers Attack The US, Not Very Badly

Uploaded on 2020-01-09 in INTELLIGENCE-Hot Spots-Iran, GOVERNMENT-National, GOVERNMENT-Defence, FREE TO VIEW, INTELLIGENCE--USA, NEWS-Cybersecurity News, TECHNOLOGY--Hackers

United States security agencies are seeing an increase in cyber security threats, as Iranian officials vow revenge against the US, for killing a top general.

The Department of Homeland Security’s cybersecurity team released an advisory  on Monday 6th warning public and private sector organisations of increased cyberattacks after the United States using a drone strike in Baghdad killed Iranian General Qasem Soleimani, a very influential leader in the Middle East. 

The guidance from DHS’ Cybersecurity and Infrastructure Security Agency, which is charged with protecting critical infrastructure from cyberattacks, recommended that organisations review their emergency preparedness plans and stay up to date on current threat intelligence. 

The advisory comes as CISA and other government entities prepare for retaliatory action from Iran that has attacked US bases in Iraq and other attacks that experts say has already included cyberattacks on the US.

The city of Las Vegas experienced a cyber compromise at 4:30 a.m local time on Tuesday 7th. The city’s Information Technologies Department is assessing the extent of the compromise. When aware of the attempt, the city immediately took steps to protect its data systems. People interfacing with the city may experience brief interruptions of service, but so far those interruptions have been minimal. The city will have a clearer picture of the extent of the compromise over the next 24 hours.

The breach in Las Vegas comes amid tensions with Iran and a warning from Homeland Security of "potentially disruptive and destructive" Iranian cyber operations.

Texas Governor Greg Abbott warned citizens to be “particularly vigilant” regarding potential cyberterrorism from Iran, suggesting that heightened tensions with the country have caused an increase in attempted attacks on state agencies.
“This is something that everybody in the state of Texas needs to be concerned, prepared and be able to address,” Abbott said Tuesday 7th January during a meeting of the Domestic Terrorism Task Force. This is the force he formed after last year’s anti-Hispanic deadly mass shooting in El Paso. “I think it’s very important that everybody be particularly vigilant about what may happen out of Iran.” he was quoted in the Texas Tribune.

On the same day as he spoke a group of self-described Iranian hackers defaced a Texas government department website.
A website defacement is typically a low-skilled hack in order to spread a particular message and normally doesn't pose any other tangible security risks. However, these defacements are likely to receive more attention at this moment due to heightening tensions between the US and Iran and the fact that they are visible on public websites. 

Obviously this come after last week’s US attack when President Trump ordered the assassination of Iranian military commander Qassem Soleimani, which Iran has vowed to respond to. "Hacked by Iranian Hacker," the defacement on the site of the Texas Department of Agriculture reads, along with an image of Soleimani. The defacement claims "Shield Iran" carried it out. Other recent defacements, including those against the Sierra Leone Commercial Bank. 

Even though the defacement itself attributed responsibility to a particular group, it is difficult from the outset to know exactly who carried it out.

The defacement shouted-out several different nicknames. A Google search of one of those led to another, previous defacement, which said "Long live Ashiyane." Ashiyane was an established Iranian hacking forum. A Google search for terms included in the defacement led to several other websites with the same or similar image. One for the Parikrma Humanity Foundation, a non-profit in Bangalore, contained largely the same defacement but also included a rap music track. The site for the South Alabama Veterans Council was also hit.   

Another US government website was also hit. This was the Federal Depository Library Program, included an image of President Trump being punched in the face. "Hacked by Iran Cyber Security Group Hackers," the defacement read.
Although Iran does not have the same calibre of cyber capability as Russia, China, or the US, its hackers can still do damage and be particularly aggressive.

In 2012 hackers working for Iran knocked out 30,000 computers belonging to Saudi state oil company Saudi Aramco. 

Vice      Texas Tribune:       Fifth Domain:        NBC News 3 LV:

You might Also Read: 

Iran's Cyberwar Response To Its General's Killing:
 

 

« 2020: Top Issues In Cyber Security
British National Cyber Security Chief Steps Down »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

ON-DEMAND WEBINAR: Gen AI for Security: Adoption strategies with Amazon Bedrock

Watch this webinar and get a comprehensive roadmap for securely adopting generative AI using Amazon Bedrock, a fully managed service that offers a choice of high-performing foundation models (FMs).

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Trusted Computing Group

Trusted Computing Group

TCG was formed to develop, define and promote open, vendor-neutral, global industry standards, supportive of a hardware-based root of trust, for interoperable trusted computing platforms.

TitanFile

TitanFile

TitanFile is an award-winning, easy and secure way for professionals to communicate without having to worry about security and privacy.

Coalfire

Coalfire

Coalfire specialises in cyber risk management and compliance. Our services span the cybersecurity lifecycle from advisory and compliance, to testing and engineering, monitoring and optimization.

edgescan

edgescan

edgescan is a cloud-based continuous vulnerability management and penetration testing solution.

Sparta Consulting

Sparta Consulting

Sparta Consulting is an information management and business development full service provider.

Ikerlan

Ikerlan

Ikerlan is an R&D technology centre specialising in areas including embedded systems, industrial automation and industrial cybersecurity.

Stage2Data

Stage2Data

Stage2Data is one of Canada’s most trusted cloud solution providers offering hosted Backup and Disaster Recovery Services.

DreamIt Ventures

DreamIt Ventures

DreamIt Ventures is an early stage venture fund that accelerates startups building transformative tech products in the fields of Healthtech, Securetech, and Urbantech.

Infosequre

Infosequre

Infosequre builds up your security awareness culture and turns your employees into the first line of defense against cyber risks.

Digital Beachhead

Digital Beachhead

Digital Beachhead has the expertise to provide a range of Cyber Risk Management and other Professional Services with specifically tailored solutions at competitive prices.

OmniCyber Security

OmniCyber Security

Omni is a cyber security firm specialising in Penetration Testing, Managed Security and Compliance.

Internet Security Research Group (ISRG)

Internet Security Research Group (ISRG)

ISRG's mission is to reduce financial, technological, and educational barriers to secure communication over the Internet.

Risk Strategies

Risk Strategies

Risk Strategies is a leading specialty risk management consultancy and insurance broker offering smarter, practical approaches to risk mitigation including Cyber Liability insurance.

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection Conference (HIP)

Hybrid Identity Protection (HIP) is the premier educational forum for identity-centric cybersecurity practitioners charged with defending hybrid cloud environments.

Blue Cloud Softech Solutions

Blue Cloud Softech Solutions

Blue Cloud Softech propels inspiring digital transformations. We provide AI products, cybersecurity, healthcare technology, and cloud solutions.

Arculus Cyber Security

Arculus Cyber Security

Arculus Cyber Security enables customers to securely realise the benefits of digital transformation through pragmatic solutions, guidance and services.