عربي English Türkçe اردو فارسى
Logo
Latest News
World

Iran Pays Millions in Ransom to End Cyberattack on Banks

Iranians at a bank branch in Tehran (IRNA)
Iranians at a bank branch in Tehran (IRNA)
TT
TT

Iran Pays Millions in Ransom to End Cyberattack on Banks

Iranians at a bank branch in Tehran (IRNA)
Iranians at a bank branch in Tehran (IRNA)

A massive cyberattack that hit Iran last month threatened the stability of its banking system and forced the country's regime to agree to a ransom deal of millions of dollars, POLITICO reported on Thursday.

The newspaper said an Iranian firm paid at least $3 million in ransom last month to stop an anonymous group of hackers from releasing individual account data from as many as 20 domestic banks in what appears to be the worst cyberattack the country has seen, quoting industry analysts and western officials briefed on the matter.

A group known as IRLeaks, which has a history of hacking Iranian companies, was likely behind the breach, the officials said.

The hackers are said to have initially threatened to sell the data they collected, which included the personal account and credit card data of millions of Iranians, on the dark web unless they received $10 million in cryptocurrency, but later settled on a smaller sum.

Iran’s authoritarian regime pushed for a deal, fearing that word of the data theft would destabilize the country’s already-wobbly financial system, which is under intense strain amid the international sanctions the country faces, the officials said.

Iran never acknowledged the mid-August breach, which forced banks to shut down cash machines across the country.

IRleaks entered the banks’ servers via a company called Tosan, which provides data and other digital services to Iran’s financial sector, the officials said.

Using Tosan, the hackers appear to have siphoned data from both private banks and Iran’s central bank. Of Iran’s 29 active credit institutions, as many as 20 were hit, including the Bank of Industry and Mines and the Post Bank of Iran.

Though the attack was reported at the time by Iran International, an opposition news outlet, neither the suspected hackers nor the ransom demands were disclosed.

Iran’s supreme leader delivered a cryptic message in the wake of the attack, blaming the US and Israel for “spreading fear among our people,” without acknowledging the country’s banks were under assault.

Despite the growing tensions between Iran and both the US and Israel, people familiar with the Iranian banking hack told POLITICO that IRLeaks is affiliated with neither the US nor Israel.

Most Viewed

 
 
World

White House's Sullivan: Weakened Iran Could Pursue Nuclear Weapon

FILE PHOTO: Iranian flag flies in front of the UN office building, housing IAEA headquarters, in Vienna, Austria, May 24, 2021. REUTERS/Lisi Niesner/File Photo
FILE PHOTO: Iranian flag flies in front of the UN office building, housing IAEA headquarters, in Vienna, Austria, May 24, 2021. REUTERS/Lisi Niesner/File Photo
TT
TT

White House's Sullivan: Weakened Iran Could Pursue Nuclear Weapon

FILE PHOTO: Iranian flag flies in front of the UN office building, housing IAEA headquarters, in Vienna, Austria, May 24, 2021. REUTERS/Lisi Niesner/File Photo
FILE PHOTO: Iranian flag flies in front of the UN office building, housing IAEA headquarters, in Vienna, Austria, May 24, 2021. REUTERS/Lisi Niesner/File Photo

The Biden administration is concerned that a weakened Iran could build a nuclear weapon, White House National Security Adviser Jake Sullivan said on Sunday, adding that he was briefing President-elect Donald Trump's team on the risk.
Iran has suffered setbacks to its regional influence after Israel's assaults on its allies, Palestinian Hamas and Lebanon's Hezbollah, followed by the fall of Iran-aligned Syrian President Bashar al-Assad.
Israeli strikes on Iranian facilities, including missile factories and air defenses, have reduced Tehran's conventional military capabilities, Sullivan told CNN.
"It's no wonder there are voices (in Iran) saying, 'Hey, maybe we need to go for a nuclear weapon right now ... Maybe we have to revisit our nuclear doctrine'," Sullivan said.
Iran says its nuclear program is peaceful, but it has expanded uranium enrichment since Trump, in his 2017-2021 presidential term, pulled out of a deal between Tehran and world powers that put restrictions on Iran's nuclear activity in exchange for sanctions relief.
Sullivan said that there was a risk that Iran might abandon its promise not to build nuclear weapons.
"It's a risk we are trying to be vigilant about now. It's a risk that I'm personally briefing the incoming team on," Sullivan said, adding that he had also consulted with US ally Israel.
Trump, who takes office on Jan. 20, could return to his hardline Iran policy by stepping up sanctions on Iran's oil industry. Sullivan said Trump would have an opportunity to pursue diplomacy with Tehran, given Iran's "weakened state."
"Maybe he can come around this time, with the situation Iran finds itself in, and actually deliver a nuclear deal that curbs Iran's nuclear ambitions for the long term," he said.