Key Highlights
- Iran’s steel manufacturing company had the latest cyber attacks that previously impacted the country’s rail system.
- Researchers believe there may be a connection between both attacks as the same type of malware is used.
- Khuzestan Steel Corporation mentioned that the attack failed due to timely action and vigilance, and no damage was done to the production line.
- The investigation is still ongoing to find out if both the attacks of current and last years are related.
According to the Check Point Research report, Iran’s steel manufacturing is subject to multiple cyber attacks that previously affected the country’s rail system. The malware used in a cyber attacks on Iran’s steel paint is connected to the one used in the attack against the country’s rail system last year. It makes researchers believe that there may be a connection between both attacks.
Check Point Research Report
Check Point Research states that the contextual clues, recycled jokes, overlaps in code, etc. indicates the fact that the attacks, occurring a year apart, may be attributed to the same threat actor.
According to reports, employees noticed that a steel billet production line at the Khuzestan Steel Corporation began to spark and malfunction on June 27. The CEO of Khuzestan Steel denied that any damage had been done in a press statement. The company said the attack failed due to timely action and vigilance, and no damage was done to the production line.
Potential Motives
A user appeared to claim responsibility for the attack by posting a video on Twitter, but it has not been verified. The video is reputed to show footage from inside the steel factory. A message was added explaining the attackers’ motives: “These companies are subject to international sanctions and continue their operations despite the restrictions. These cyber attacks, being carried out carefully to protect innocent individuals, are in response to the aggression of the Islamic Republic.”
The investigation is still ongoing, and it is yet to be verified if the user is connected to the attacks of both current and last years.
Fore more such Latest news on cyber security Click Here