Close Menu
TechCentralTechCentral

    Subscribe to the newsletter

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    Facebook X (Twitter) YouTube LinkedIn
    WhatsApp Facebook X (Twitter) LinkedIn YouTube
    TechCentralTechCentral
    • News

      Vodacom’s Maziv deal gets makeover ahead of crucial hearing

      18 July 2025

      Cut electricity prices for data centres: Andile Ngcaba

      18 July 2025

      Takealot taps Mr D to deliver toys, pet food and future growth

      18 July 2025

      ‘Oh, Ani!’: Elon’s edgy bot stirs ethical storm

      18 July 2025

      Trump U-turn on Nvidia spurs talk of grand bargain with China

      18 July 2025
    • World

      Grok 4 arrives with bold claims and fresh controversy

      10 July 2025

      Samsung’s bet on folding phones faces major test

      10 July 2025

      Bitcoin pushes higher into record territory

      10 July 2025

      OpenAI to launch web browser in direct challenge to Google Chrome

      10 July 2025

      Cupertino vs Brussels: Apple challenges Big Tech crackdown

      7 July 2025
    • In-depth

      The 1940s visionary who imagined the Information Age

      14 July 2025

      MultiChoice is working on a wholesale overhaul of DStv

      10 July 2025

      Siemens is battling Big Tech for AI supremacy in factories

      24 June 2025

      The algorithm will sing now: why musicians should be worried about AI

      20 June 2025

      Meta bets $72-billion on AI – and investors love it

      17 June 2025
    • TCS

      TCS+ | Samsung unveils significant new safety feature for Galaxy A-series phones

      16 July 2025

      TCS+ | MVNX on the opportunities in South Africa’s booming MVNO market

      11 July 2025

      TCS | Connecting Saffas – Renier Lombard on The Lekker Network

      7 July 2025

      TechCentral Nexus S0E4: Takealot’s big Post Office jobs plan

      4 July 2025

      TCS | Tech, townships and tenacity: Spar’s plan to win with Spar2U

      3 July 2025
    • Opinion

      A smarter approach to digital transformation in ICT distribution

      15 July 2025

      In defence of equity alternatives for BEE

      30 June 2025

      E-commerce in ICT distribution: enabler or disruptor?

      30 June 2025

      South Africa pioneered drone laws a decade ago – now it must catch up

      17 June 2025

      AI and the future of ICT distribution

      16 June 2025
    • Company Hubs
      • Africa Data Centres
      • AfriGIS
      • Altron Digital Business
      • Altron Document Solutions
      • Altron Group
      • Arctic Wolf
      • AvertITD
      • Braintree
      • CallMiner
      • CambriLearn
      • CYBER1 Solutions
      • Digicloud Africa
      • Digimune
      • Domains.co.za
      • ESET
      • Euphoria Telecom
      • Incredible Business
      • iONLINE
      • Iris Network Systems
      • LSD Open
      • NEC XON
      • Network Platforms
      • Next DLP
      • Ovations
      • Paracon
      • Paratus
      • Q-KON
      • SevenC
      • SkyWire
      • Solid8 Technologies
      • Telit Cinterion
      • Tenable
      • Vertiv
      • Videri Digital
      • Wipro
      • Workday
    • Sections
      • AI and machine learning
      • Banking
      • Broadcasting and Media
      • Cloud services
      • Contact centres and CX
      • Cryptocurrencies
      • Education and skills
      • Electronics and hardware
      • Energy and sustainability
      • Enterprise software
      • Fintech
      • Information security
      • Internet and connectivity
      • Internet of Things
      • Investment
      • IT services
      • Lifestyle
      • Motoring
      • Public sector
      • Retail and e-commerce
      • Science
      • SMEs and start-ups
      • Social media
      • Talent and leadership
      • Telecoms
    • Events
    • Advertise
    TechCentralTechCentral
    Home » Information security » Iranians may be behind ‘unprecedented’ cyberattacks

    Iranians may be behind ‘unprecedented’ cyberattacks

    By Agency Staff10 January 2019
    Twitter LinkedIn Facebook WhatsApp Email Telegram Copy Link
    News Alerts
    WhatsApp

    Cyberattackers in Iran could be behind a wave of hacks on government and communications infrastructure that will require a coordinated global response to repel, according to cybersecurity firm FireEye.

    FireEye researchers have identified attacks on dozens of Internet sites belonging to entities across the Middle East, North Africa, Europe and North America, the firm said in a report published Thursday. The actor or actors have “a nexus to Iran”, it said.

    By hijacking domain name servers — effectively the Web’s version of an address book — hackers compromise the underlying technology that governs how the Web functions to exploit weaknesses in site domain names.

    We have seen attacker activity from this IP space over a period of time that would indicate that it is being used consistently by Iranian attack groups

    In executing a DNS hijack, hackers are able to insert themselves between a victim’s Internet site and any user of that site — collecting all information the user had inputted into the site. The information would give the attacker access to the user’s e-mails — and a route into the user’s own network — Shepherd said.

    “This gives attackers their initial foothold,” he said. “They are collecting information that provides both immediate espionage benefits and potentially, longer term, it gives a foothold that could be a precursor or pre-positioning for other types of attacks, be they disruptive or destructive.”

    FireEye has “moderate” confidence that the attackers are from Iran, as its researchers see overlap with previous Iranian cyberattacks, said Alister Shepherd, the Dubai-based Middle East and Africa director for Mandiant, a unit of FireEye. “That overlap is not negligible,” he said. “We have seen attacker activity from this IP space over a period of time that would indicate that it is being used consistently by Iranian attack groups.”

    Worldwide effort

    Bloomberg News faxed requests for comment to Iran’s ministry of information, communications & technology and the ministry of foreign affairs on Thursday, which is a weekend day in Iran. Neither office responded immediately.

    The scale and nature of the current wave of so-called DNS attacks will require a coordinated worldwide effort to address, Shepherd said. The Internet’s system of domain names is a core element in its functioning and security, he said.

    Individual victims would also have to address the security breaches of their networks and related data, he said. He declined to identify any victims, citing his firm’s policy of shining light on attackers and not their targets.

    The skyline of Tehran, Iran’s biggest city

    Iran has been rapidly developing its cyber capabilities, according to a 2016 report by the World Economic Forum that alleged Iranian hackers were behind a prior attack on the national oil company of Saudi Arabia, Tehran’s chief regional rival for influence in the Middle East.

    The 2012 incident nearly obliterated Saudi Aramco’s corporate IT infrastructure and brought it close to collapse. Saudi authorities blamed unidentified people based outside the kingdom for the attack.

    Global action to confront Iran over evidence of hacking could further isolate a nation already weakened by the return of broad US economic sanctions under President Donald Trump. European powers have vowed to salvage the landmark 2015 nuclear deal that underpinned Iran’s hopes for an economic recovery, but recent allegations of Iranian attempts to target opposition groups based overseas have strained ties.

    Mandiant alleged in 2013 that China’s military might have been behind a group that had hacked at least 141 companies worldwide since 2006. The US eventually issued indictments against five military officials who were purportedly members of that group.  — Reported by David Tweed, with assistance from Golnar Motevalli, (c) 2019 Bloomberg LP



    FireEye
    Subscribe to TechCentral Subscribe to TechCentral
    Share. Facebook Twitter LinkedIn WhatsApp Telegram Email Copy Link
    Previous ArticleBitcoin sinks as cryptocurrencies take a sudden lurch lower
    Next Article We’re doing just fine, BlackBerry boss says

    Related Posts

    US government systems come under widespread hacker attack

    14 December 2020

    Why everyone should be worried by the FireEye hack

    10 December 2020

    Cybersecurity firm FireEye hacked in suspected nation state attack

    9 December 2020
    Company News

    Vertiv to acquire custom rack solutions manufacturer

    18 July 2025

    SA businesses embrace gen AI – but strategy and skills are lagging

    17 July 2025

    Ransomware in South Africa: the human factor behind the growing crisis

    16 July 2025
    Opinion

    A smarter approach to digital transformation in ICT distribution

    15 July 2025

    In defence of equity alternatives for BEE

    30 June 2025

    E-commerce in ICT distribution: enabler or disruptor?

    30 June 2025

    Subscribe to Updates

    Get the best South African technology news and analysis delivered to your e-mail inbox every morning.

    © 2009 - 2025 NewsCentral Media

    Type above and press Enter to search. Press Esc to cancel.