Iran Has Stopped A Large Scale Infrastructure Attack

The Iranian AFTA Strategic Management Centre, which is the national  presidential strategic management centre, have stopped a widespread cyber attack on the country's infrastructure.  

According to a statement AFTA says it has  succeeded in fending off the cyber attack on the back of “timely action” taken by its security operations command centre. 

The cyber attackers apparently were planning to exploit a security gap in software most widely used by infrastructure organisations in Iran.

“The hackers were planning to exploit the security hole in one of the widely used applications at Iranian organisations to get access to the infrastructures and their data, inject them their own malware, and give them their desired commands,” said AFTA  in a statement . AFTA experts managed to discover the “clues and the behavioral patterns” used in the cyber raid and detect the ultimate targets, which included over 100 important e-services in both state and private sectors of the country.

AFTA claimed that they succeeded in denying permission for IP addresses from the Netherlands, US and UK from accessing "back doors" in the flawed software.

Iran’s state organisations and nuclear facilities have repeatedly been the target of cyber assaults by Israel and the United States. In one of the latest such acts of sabotage, an Israeli cyber raid caused a temporary outage at gas stations in large cities across Iran in October 2021. In 2011, the US and Israel collaborated in a cyber attack on Iran’s nuclear program, using a piece of malware known as Stuxnet

In December 2021 Iran's Ambassador to the United Nations underlined Tehran’s opposition to inference in the internal affairs of the states, saying that his country is itself a victim of cyberattacks by the US and Israel. “Iran has been the victim of a number of cyber-attacks, including the 2010 Stuxnet malware attacks against its critical infrastructure by the US and Israel. Since 2010, these illegal acts have intensified and still continue.... We believe that this Group is in the best position to address this irresponsible behavior and build upon the desire to end such reckless activities,” the ambassador said.

Iran says that like many other countries in the world, it is exposed to cyber threats, and the country has been one of the main targets of cyber attacks by enemies against its peaceful nuclear program, oil infrastructure and government institutions in recent years.

It also says that there is ample evidence that many attacks around the world using advanced cyber weapons are carried out jointly by the US National Security Agency (NSA), the Zionist regime and British intelligence agencies, including the Government Communications Headquarters (GCHQ), in some cases, criminal groups also carry out these attacks on their behalf, Iranian sources claim.

JPost:    IFPNews:    FarsNews:    MiddleEast24:     Iran Press

You Might Also Read: 

Israel & Iran Locked In Cyber Conflict:
 

« Elon Musk's Deal To Buy Twitter
Cyber Security Weak Points That Business Leaders Should Know About »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

Zentek Digital Investigations

Zentek Digital Investigations

Zentek has been providing digital forensics services to the public and private sector for computers and mobile devices since 2004.

Vade Secure

Vade Secure

Vade Secure provides protection against the most sophisticated email scams such as phishing and spear phishing, malware and ransomware.

SAASPASS

SAASPASS

SAASPASS is a full-stack identity and access management solution, a single product which allows you to manage all your digital and physical access needs securely and conveniently.

QA

QA

QA is a leading IT training provider in the UK with over 1,500 courses covering all areas of IT including Cyber Security.

Resilia

Resilia

RESILIA is a comprehensive portfolio of tools and training to help your organization achieve global best practice in cyber security.

Rigado

Rigado

Rigado's mission is to enable commercial IoT success by providing high-performance secure and scalable wireless edge connectivity and network infrastructure.

Orchestra Group

Orchestra Group

Orchestra Group offer a unique integrated cybersecurity defense platform with proactive security policy management and enforcement orchestration.

Noventiq

Noventiq

Noventiq (the brandname of Softline Holding plc) is a leading global solutions and services provider in digital transformation and cybersecurity.

Etonwood

Etonwood

Etonwood specialises in infrastructure and vendor technology recruitment in areas including cloud platforms, cyber security and service management.

SuperCom

SuperCom

SuperCom are a global secure solutions integrator and technology provider for governments and other consumers facing organizations around the world.

Traceable

Traceable

Traceable was founded to protect applications from next-generation attacks.

SpireTec Solutions

SpireTec Solutions

SpireTec Solutions is an IT management training company offering 1500+ courses with state of art training facilities backed by a team of industry experts in various domains including cybersecurity.

HashDit

HashDit

HashDit products and services focus on helping build a safe ecosystem for both protocol users and smart contract developers on BNB Chain.

Casepoint

Casepoint

Casepoint is the legal technology platform of choice for corporations, government agencies, and law firms to meet their complex eDiscovery, investigations, and compliance needs.

Technology Mindz

Technology Mindz

Technology Mindz is a leading provider of cybersecurity services. We offer a wide range of services to help businesses. Our services are Identity and access management, Governance risk and compliance.

Softcell Technologies Global

Softcell Technologies Global

Softcell is one of India's leading System Integrators. We serve enterprise customers in the areas of IT Security, Mobility, Optimised IT Infrastructure, Cloud and Engineering Services.