US indicts Iranians who hacked power company, women's shelter

US indicts Iranians who hacked power company, women's shelter

This handout image by the US State Department shows Iranian cyber actors wanted for their alleged involvement in a coordinated campaign to hack and extort hundreds of computer networks and organizations in the United States and abroad
This handout image by the US State Department shows Iranian cyber actors wanted for their alleged involvement in a coordinated campaign to hack and extort hundreds of computer networks and organizations in the United States and abroad. Photo: Handout / US DEPARTMENT OF STATE/AFP
Source: AFP

New feature: Check out news exactly for YOU ➡️ find “Recommended for you” block and enjoy!

The US Department of Justice announced an indictment Wednesday against three Iranian hackers who used ransomware to extort a battered women's shelter and a power company.

Authorities said the trio launched ransomware attacks at "hundreds" of victims, including inside Britain, Australia, Iran, Russia and the United States, saying they extorted money "largely" for their own accounts, and not for the Iranian government.

But a separate US Treasury announcement of sanctions said the three were part of a larger hacking group tied to Iran's powerful Islamic Revolutionary Guard Corps (IRGC), and the US State Department has offered a $10 million reward for information on them.

The indictment identified the three as Mansour Ahmadi, Ahmad Khatibi Aghda, and Amir Hossein Nikaeen Ravari.

It said that between October 2020 and August 2022, the men used known vulnerabilities in computer systems to attack multiple targets in the United States, stealing their data and demanding up to hundreds of thousands of dollars to have it returned.

Read also

US says Russia has sent $300 mln to meddle in elections

Those included local governments, a shelter for victims of domestic violence, a children's hospital in Boston, accounting firms and electricity generating companies.

PAY ATTENTION: Follow us on Instagram - get the most important news directly in your favourite app!

The victims were not methodically chosen but were "targets of opportunity" whose computer systems were vulnerable to hacking, officials said.

"The indictment does not allege that these actors undertook these actions on behalf of the Government of Iran," a senior Justice Department official told reporters.

The three "engaged in a pattern of hacking, cyber-theft, and extortion largely for personal gain," FBI Director Chris Wray said in a separate statement.

But a concurrent announcement by the US Treasury said the three were part of a group of 10 Iranian hackers targeted with sanctions that was backed by the Revolutionary Guards.

"This IRGC-affiliated group is known to exploit software vulnerabilities in order to carry out their ransomware activities, as well as engage in unauthorized computer access, data exfiltration, and other malicious cyber activities," the Treasury said.

Read also

UN accuses Taliban of harassing female staff in Afghanistan

Their actions align with those of known Iranian cyberattack operations which private cyber security groups have dubbed "APT35," "Charming Kitten" and "Phosphorous," Treasury added.

Source: AFP

Authors:
AFP avatar

AFP AFP text, photo, graphic, audio or video material shall not be published, broadcast, rewritten for broadcast or publication or redistributed directly or indirectly in any medium. AFP news material may not be stored in whole or in part in a computer or otherwise except for personal and non-commercial use. AFP will not be held liable for any delays, inaccuracies, errors or omissions in any AFP news material or in transmission or delivery of all or any part thereof or for any damages whatsoever. As a newswire service, AFP does not obtain releases from subjects, individuals, groups or entities contained in its photographs, videos, graphics or quoted in its texts. Further, no clearance is obtained from the owners of any trademarks or copyrighted materials whose marks and materials are included in AFP material. Therefore you will be solely responsible for obtaining any and all necessary releases from whatever individuals and/or entities necessary for any uses of AFP material.