عربي English Türkçe اردو فارسى
Logo
Latest News
World

Washington Warns of Iranian Piracy Targeting World Sectors

An FBI special agent investigates a scene in Queens, New York March 25, 2010. (Reuters)
An FBI special agent investigates a scene in Queens, New York March 25, 2010. (Reuters)
TT
TT

Washington Warns of Iranian Piracy Targeting World Sectors

An FBI special agent investigates a scene in Queens, New York March 25, 2010. (Reuters)
An FBI special agent investigates a scene in Queens, New York March 25, 2010. (Reuters)

In a joint US-UK operation, US security and law enforcement agencies issued a warning of Iranian-affiliated hacking operations targeting a range of government and private organizations in multiple sectors around the world.

The Federal Bureau of Investigation (FBI), the Cybersecurity and Infrastructure Security Agency (CISA), and other British and US agencies were quoted by Reuters as saying that they had observed Iranian entities, known as MuddyWater, carrying out cyber-espionage targeting the defense, local government, oil and natural gas and telecommunications sectors across the globe.

An alert issued by the US Cyber Security Agency stated that it had revealed, in cooperation with the FBI, the US National Cyber Command Force, and the National Cyber Security Center in the United Kingdom, the presence of “a group of Iranian government-sponsored advanced persistent threat (APT) actors, known as MuddyWater, conducting cyber espionage and other malicious cyber operations targeting a range of government and private-sector organizations across sectors…”

The US Cyber Security Agency said that MuddyWater was a “subordinate element within the Iranian Ministry of Intelligence and Security” and had “conducted broad cyber campaigns in support of MOIS objectives since approximately 2018.”

“MuddyWater actors are positioned both to provide stolen data and accesses to the Iranian government and to share these with other malicious cyber actors,” according to the agency.

The alert read: “MuddyWater actors are known to exploit publicly reported vulnerabilities and use open-source tools and strategies to gain access to sensitive data on victims’ systems and deploy ransomware. These actors also maintain persistence on victim networks via tactics such as side-loading dynamic link libraries (DLLs)—to trick legitimate programs into running malware…”

The US warning comes less than two weeks after the Cyber Security Agency had cautioned against a “new storm” of cyber-attacks targeting individuals and facilities.

A report by the FBI and the Cyber Security Agency of the Department of Homeland Security on Feb. 10 disclosed major plans that some hackers might carry out to target civilian facilities and individuals with the aim to cause wider damage.

However, the latest warning pointed specifically to Iran’s MuddyWater which mainly targeted Middle Eastern, European and North American countries. The group’s victims are mainly in the telecommunications and government sectors, as well as oil.

The group was previously associated with the FIN7, but MuddyWater may have been motivated by espionage.

FIN7 has been working on active financially motivated threats since 2013 and primarily targeting the retail, restaurant and hospitality sectors in the United States, often using point-of-sale malware.

Most Viewed

 
 
World

Iran to Launch 'Advanced Centrifuges' in Response to IAEA Censure

Western countries successfully moved a resolution at the IAEA to censure Iran over its nuclear program - AFP
Western countries successfully moved a resolution at the IAEA to censure Iran over its nuclear program - AFP
TT
TT

Iran to Launch 'Advanced Centrifuges' in Response to IAEA Censure

Western countries successfully moved a resolution at the IAEA to censure Iran over its nuclear program - AFP
Western countries successfully moved a resolution at the IAEA to censure Iran over its nuclear program - AFP

Iran said Friday it would launch a series of "new and advanced" centrifuges in response to a resolution adopted by the UN nuclear watchdog that censures Tehran for what the agency called lack of cooperation.

The censure motion brought by Britain, France, Germany, and the United States at the 35-nation board of the International Atomic Energy Agency (IAEA) follows a similar one in June.

It came as tensions run high over Iran's atomic program, with critics fearing that Tehran is attempting to develop a nuclear weapon -- a claim the Islamic Republic has repeatedly denied.

The resolution -- which China, Russia and Burkina Faso voted against -- carried with 19 votes in favor, 12 abstentions and Venezuela not participating, two diplomats told AFP.

"The head of the Atomic Energy Organization of Iran issued an order to take effective measures, including launching a significant series of new and advanced centrifuges of various types," a joint statement by the organization and Iran's foreign ministry said.

Centrifuges are the machines that enrich uranium transformed into gas by rotating it at very high speed, increasing the proportion of fissile isotope material (U-235).

"At the same time, technical and safeguards cooperation with the IAEA will continue, as in the past" and within the framework of agreements made by Iran, the joint Iranian statement added.

Behrouz Kamalvandi, Iran's atomic energy organization spokesman, on Friday said the new measures are mostly related to uranium enrichment.

"We will substantially increase the enrichment capacity with the utilisation of different types of advanced machines," he told state TV.

Iran's retaliatory measures "are reversible if this (Western) hostile action is withdrawn or negotiations are opened," Tehran-based political analyst Hadi Mohammadi told AFP.

- 'Legal obligations' -

The confidential resolution seen by AFP says it is "essential and urgent" for Iran to "act to fulfil its legal obligations" under the Non-Proliferation Treaty (NPT) ratified in 1970.

The text also calls on Tehran to provide "technically credible explanations" for the presence of uranium particles found at two undeclared locations in Iran.

In addition, Western powers are asking for a "comprehensive report" to be issued by the IAEA on Iran's nuclear efforts "at the latest" by spring 2025.

The resolution comes after the IAEA's head Rafael Grossi returned from a trip to Tehran last week, where he appeared to have made headway.

During the visit, Iran agreed to an IAEA demand to cap its sensitive stock of near weapons-grade uranium enriched up to 60 percent purity.

- 'Cycle of provocation' -

"Iran did not start the cycle of provocation -- the Western side could, without passing a resolution... create the atmosphere for negotiations if it really was after talks," the analyst Mohammadi said.

In 2015, Iran and world powers reached an agreement that saw the easing of international sanctions on Tehran in exchange for curbs on its nuclear program.

But the United States unilaterally withdrew from the accord in 2018 under then-president Donald Trump and reimposed biting economic sanctions, which prompted Iran to begin rolling back on its own commitments.

On Thursday, Iran's deputy foreign minister for legal and international affairs Kazem Gharibabadi warned of Iran's potential next step.

"Iran had announced in an official letter to European countries that it would withdraw from the NPT if the snapback mechanism was activated, and the Security Council sanctions were reinstated," Gharibabadi said in a late-night interview with state TV.

The 2015 deal contains a "snapback" mechanism that can be triggered in case of "significant non-performance" of commitments by Iran.

This would allow many sanctions to be reimposed.

Tehran has since 2021 decreased its cooperation with the agency by deactivating surveillance devices monitoring the nuclear program and barring UN inspectors.

At the same time, it has ramped up its nuclear activities, including by increasing its stockpiles of enriched uranium and the level of enrichment to 60 percent.

That level is close, according to the IAEA, to the 90 percent-plus threshold required for a nuclear warhead and substantially higher than the 3.67 percent limit it agreed to in 2015.