This morning, ICNA received an e-mail that appears to have been sent from a compromised e-mail server belonging to the company “Golden Globe”. In the email the hacking group Prana Network claims that, in addition to hacking Golden Globe, it also gained access to the network of the company “Nosazan Kaveh”.

The group says that these two entities are actually front companies owned by the IRGC oil company “Shahid Pour Jafari”. A large number of their confidential emails have been published on the Simorgh.io website.

According to the group, the emails contain sensitive information such as contracts, fake invoices, offshore bank account details and documents about cryptocurrency transfers used to move revenue generated from IRGC oil through the two hacked companies.

The group also states that the emails include evidence of several transactions linked to the IRGC, MODAFL and AFGS.

Prana Network has posted several examples of these emails on its X page which are shown below:

It is worth noting that the group previously hacked another IRGC-linked front company called “Sahara Thunder” and about a year later it targeted the company “Sepehr Energy Jahan” twice in cyber attacks.

We are currently verifying the authenticity and content of the leaked information and will publish a follow-up article soon.

If you have any information about other Iranian cyber groups or the activites of these companies, please contact us – [email protected].