Hosein)root Discovers XSS Vulnerability on Google Earth
On 25 November Hosein)root who asked ICNA publish his true name as Amir Hossein Sharbati on CXSecurity and some other places published his XSS vulnerability that he discovered in Google Earth. The vulnerability is of this nature that if KML…
35/000 Characters Tweet Shocks German Hackers!
Thinking that a person could send a tweet with more than 280 characters is more or less like a dream. One can say that, this is for the first time that a person could go round this limitation. In the…
SMS Virus Developed by Iranian Hacker Claims 100/000 Victims in Iran
In recent weeks a story that has attracted attention of many people has been the development and spreading of a virus by SMS, which was developed by Iranian hacker Pourya Emanverdi, who uses the username num1vps online. The story is…
Defacement of Hafez Institute of Higher Education by UnSec Team
ICNA was contacted yesterday, 19 October, by UnSec Team member Mostafa Asadi concerning the hack and defacement of the website of Hafez Institute of Higher Education, Shiraz, Iran. Although of course this kind of activities are illegal in Iran, according…
Iranian TYRANT Ransomware
A new type of ransomware have been discovered on October 16 2017 which appears to be Iranian. The Tyrant Ransomware is a data encryption Trojan that is classified as a mid-tier crypto-threat. The threat appears to be used in attacks on…
Iranian Hackers Accused of Attack on U.K. Parliament
In the last day we have seen that UK government has accused Iranian hackers of attacking the email system of U.K. Parliament. Although this has not been confirmed yet by either side, if it is proved, it shows two things:…
Iran Cyber Security Company: Registration for 1st CTF Open Now
Iran Cyber Security Group has relaunched recently as a registered and official company – Iran Cyber Security Company. Between its first activities is the holding of its first Capture the Flag (CTF) competition. You can see full details at https://iran-cyber.net/ctf/info,…
4TT4CK3R Identifies Flaw in University of Tehran Website
Vulnerability researcher 4TT4CK3R discovered on 23 August a cross-ste scripting vulnerability on website of University of Tehran. He has informed UT of the vulnerability. Although the risk of any damage is small, we should be pleased that our country Iran…
Iranian Hackers Charged By USA For Cracking/Selling Software
The USA Department of Justice –DoJ– announced indictments against two Iranians for hacking a software company –ArrowTech– in Vermont. The FBI’s Albany Cyber Squad investigated the case. Mohammed Reza Rezakhah and Mohammed Saeed Ajily were charged with five counts as follows:…
Iranian IHU EWCD Malware Domains
ICNA have already posted about the links between malware here, and the Iranian State. We have done some further research. In early March 2017 the Kaspersky report identified several domains associated with malware, including: eservic.com actdire.com securityupdated.com and chromup.com Further…