SMS Virus Developed by Iranian Hacker Claims 100/000 Victims in Iran
In recent weeks a story that has attracted attention of many people has been the development and spreading of a virus by SMS, which was developed by Iranian hacker Pourya Emanverdi, who uses the username num1vps online. The story is…
Defacement of Hafez Institute of Higher Education by UnSec Team
ICNA was contacted yesterday, 19 October, by UnSec Team member Mostafa Asadi concerning the hack and defacement of the website of Hafez Institute of Higher Education, Shiraz, Iran. Although of course this kind of activities are illegal in Iran, according…
Iranian TYRANT Ransomware
A new type of ransomware have been discovered on October 16 2017 which appears to be Iranian. The Tyrant Ransomware is a data encryption Trojan that is classified as a mid-tier crypto-threat. The threat appears to be used in attacks on…
Iranian Hackers Accused of Attack on U.K. Parliament
In the last day we have seen that UK government has accused Iranian hackers of attacking the email system of U.K. Parliament. Although this has not been confirmed yet by either side, if it is proved, it shows two things:…
Iran Cyber Security Company: Registration for 1st CTF Open Now
Iran Cyber Security Group has relaunched recently as a registered and official company – Iran Cyber Security Company. Between its first activities is the holding of its first Capture the Flag (CTF) competition. You can see full details at https://iran-cyber.net/ctf/info,…
4TT4CK3R Identifies Flaw in University of Tehran Website
Vulnerability researcher 4TT4CK3R discovered on 23 August a cross-ste scripting vulnerability on website of University of Tehran. He has informed UT of the vulnerability. Although the risk of any damage is small, we should be pleased that our country Iran…
Iranian Hackers Charged By USA For Cracking/Selling Software
The USA Department of Justice –DoJ– announced indictments against two Iranians for hacking a software company –ArrowTech– in Vermont. The FBI’s Albany Cyber Squad investigated the case. Mohammed Reza Rezakhah and Mohammed Saeed Ajily were charged with five counts as follows:…
Iranian IHU EWCD Malware Domains
ICNA have already posted about the links between malware here, and the Iranian State. We have done some further research. In early March 2017 the Kaspersky report identified several domains associated with malware, including: eservic.com actdire.com securityupdated.com and chromup.com Further…
Who are the Iran Malware Team?
ICNA have found a mysterious Iranian hacking team called the “Iran Malware Team”. We have not heard of them before and would like to know more. They have a website at iranmalware.team and their site shows they appear to be…
Iranians Behind StoneDrill and NewsBeef Malware
Using simple techniques available to any security vendors looking at VirusTotal data, ICNA has found and clearly identified that the hacker xman_1365_x as being behind the StoneDrill and NewsBeef malware. Mahdi Honarvar xman_1365_x is self-identified on forums as Mahdi Honarvar…