Iran In The Firing Line

In the Middle East there has been an increased role of cyber war and cyber security, much as the region is also at the forefront of experiments with new weapon systems.

Iran reported three cyber-attacks, within one week last December. At least one of the attacks was allegedly "state-sponsored." the governmant has claimed, saying that two of the these attacks in were repelled by the country's security shield, known as Digital Fortress or Dezhfa, which it is claimed has helped repel 33 million cyber attacks against the country in 2019

This month Iranian officials say that hackers damaged a small number of computers in a failed cyber-attack against the port of Bandar Abbas, the country's largest port in the Strait of Hormuz. 

Details about the cyber attack remain unknown, although recent cyber attacks have managed to damage a number of private systems at the Shahid Rajaei port near Bandar Abbas and the Strait of Hormuz, said Mohammad Rastad, Managing Director of the Ports and Maritime Organisation. 

Iran is currently in the process of developing a national Internet system, known as the National Information Network (NIN), in order to cut the country's dependency on international cyberspace. The network will also prevent Virtual Private Networks (VPNs) from helping Iranians bypass the Islamic Republic's censorship of the Internet, as data requests won't be routed outside the country. The plan was first announced in 2010 with an expected completion date in 2015. In May, the Supreme Council of the Cultural Revolution announced that the NIN is 80% complete.

The Intranet would allow the government to decide what content can be accessed by users, removing the need for absolute shutdowns like the one imposed during the protests.

Some Iranian newspapers warned the government against imposing such a decision on citizens, as things could easily spark out of control as they did after gasoline prices were raised in a sudden decision by the nation's leadership, according to an Iranian opposition group. A state-run daily called the announcement a "threatening message to the people," while another daily asked, "will the people and the private sector tolerate the Internet shutdown?"

This month, Israel's security cabinet met to discuss an alleged Iranian cyber attack on Israeli water and sewage facilities that took place in April. The attack did not cause substantial damage except for a few issues in local water systems, according to Israeli officials, but is still seen as a substantial escalation by the Iranians, especially since the target was civilian infrastructure.

Iran-linked hackers have targeted US-owned drug company Gilead Sciences Inc. in recent weeks as the firm scrambles to develop treatments for the Covid-19 virus. The hackers posed as journalists and sent emails to Gilead employees that were intended to trick them into sharing their passwords. It is not known whether any of the attempted attacks were successful.

Overall the increasing cyber incidents in the Middle East illustrate how this new frontline is a concern to governments. 

DefenseOne:     Jerusalem Post:      Jerusalem Post       ZDNet:         Just Security:

You Might Also Read:

Iran's Cutting Edge Cyberwar Capabilities:

 

« Hacked ChatBooks Photo Data For Sale
Only A Quarter Of Employees Have Cyber Security Training »

Infosecurity Europe
CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

North Infosec Testing (North IT)

North Infosec Testing (North IT)

North IT (North Infosec Testing) are an award-winning provider of web, software, and application penetration testing.

IT Governance

IT Governance

IT Governance is a leading global provider of information security solutions. Download our free guide and find out how ISO 27001 can help protect your organisation's information.

Resecurity

Resecurity

Resecurity is a cybersecurity company that delivers a unified platform for endpoint protection, risk management, and cyber threat intelligence.

Clayden Law

Clayden Law

Clayden Law advise global businesses that buy and sell technology products and services. We are experts in information technology, data privacy and cybersecurity law.

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

AlgoSec

AlgoSec

The AlgoSec platform enables the world’s most complex organizations to gain visibility, reduce risk and process changes at zero-touch across the hybrid network.

European Internet Forum (EIF)

European Internet Forum (EIF)

EIF’s mission is to help provide European political leadership for the political, economic and social challenges of the worldwide digital transformation.

Secnology

Secnology

Secnology is dedicated to developing and providing the most powerful and user friendly event analysis and security management solution.

Sliced Tech

Sliced Tech

Sliced Tech provides enterprise grade managed Cloud services, including Security-as-a-Services, aimed at meeting the needs of commercial and government clients from within Australia.

Ergon Informatik

Ergon Informatik

Ergon Informatik AG is Switzerland's leading provider of customised software solutions and software products including fraud detection and the Airlock web security suite.

DestructData

DestructData

DestructData is a leading independent provider of End of Life data destruction/security solutions.

SparkLabs Cyber + Blockchain

SparkLabs Cyber + Blockchain

SparkLabs Cyber + Blockchain accelerator is located in Washington D.C. which is one of the world's top cybersecurity ecosystems.

Monster Jobs

Monster Jobs

Monster is a global leader in connecting people to jobs, wherever they are. Monster covers all job sectors including cybersecurity in locations around the world.

Avertium

Avertium

Avertium is the managed security and consulting provider that companies turn to when they want more than check-the-box cybersecurity.

Aristi Labs

Aristi Labs

Aristi Labs provides comprehensive security solutions to help businesses protect data and intellectual property, minimizing downtime and maximizing productivity.

Infinipoint

Infinipoint

Infinipoint pioneers the first Device-Identity-as-a-Service (DIaaS) solution, addressing Zero Trust device access and enabling enterprises of all sizes to automate cyber hygiene.

Open Source Security Foundation (OpenSSF)

Open Source Security Foundation (OpenSSF)

OpenSSF is committed to collaboration and working both upstream and with existing communities to advance open source security for all.

Glasstrail

Glasstrail

Glasstrail are single-minded about helping organisations gather intelligence and manage vulnerabilities in their attack surface before adversaries exploit them.

Liverton Security

Liverton Security

Liverton Security is a New Zealand-owned cyber security provider offering consultancy and security-related products to government and commercial customers throughout New Zealand.

SITS Group

SITS Group

SITS Group excel in delivering a comprehensive range of Cyber Security consulting and managed services, from cloud transformation to risk management.

SoteriaSec

SoteriaSec

SoteriaSec is a premier cybersecurity firm providing comprehensive digital forensics and incident response services.