Predatory Sparrow Strikes Again: Suspected Israeli-Linked Hackers Claim Cyberattack on Iran’s Bank Sepah
A shadowy anti-Iranian hacking group, believed to have ties to Israel, has claimed responsibility for a destructive cyberattack targeting Iran’s state-owned Bank Sepah. The group, known as Gonjeshke Darande or “Predatory Sparrow,” alleged via social media on Tuesday that it had successfully infiltrated and destroyed critical data within the bank’s systems.
A History of Digital Sabotage
Predatory Sparrow has a history of high-impact cyber operations against Iran. In 2022, the group was behind a cyberattack that caused a massive fire at an Iranian steel facility, and it has also been linked to a 2021 operation that disabled gas stations across the country, creating nationwide chaos. Cybersecurity researchers and Western intelligence officials have repeatedly suggested the group’s sophisticated capabilities exceed those of ordinary hacktivists, pointing to likely nation-state support—specifically, Israel.
While Israel has never officially acknowledged any connection, multiple Israeli media outlets routinely describe Predatory Sparrow as “Israel-linked.”
Motive Behind the Attack
According to statements posted by the group, the decision to target Bank Sepah stemmed from its alleged financial support for Iran’s military activities. “We target institutions that enable regime violence,” the group said, underscoring a strategic focus on entities tied to Iran's defense and nuclear sectors.
This latest cyberattack unfolds against the backdrop of intensifying military conflict between Iran and Israel. Just days earlier, Israel reportedly struck several Iranian nuclear and military targets, prompting a series of retaliatory missile exchanges between the two nations. The cyberattack appears to be a digital extension of an increasingly kinetic conflict.
Impact and Uncertainty
As of Tuesday, Bank Sepah’s website was offline, and its UK-based branch, Bank Sepah International plc, had yet to respond to media inquiries. Israeli outlets reported that Iranian customers were facing access issues with their accounts, though Reuters noted it had not independently verified the extent of the damage.
Cybersecurity experts have weighed in on the potential implications. Rob Joyce, former NSA cybersecurity chief, warned on X (formerly Twitter) that such attacks, if successful, could shake public confidence in the Iranian banking system and create broader financial instability.
"Disrupting the availability of this bank’s funds, or triggering a broader collapse of trust in Iranian banks, could have major impacts there," Joyce noted.
No comments:
Post a Comment