Security company Radware detected 149 DDoS attacks that appeared to be connected to Iran between February 28 and March 2, the majority targeting government entities in the Middle East. All but a tiny percentage were driven by just three hacktivist groups, Keymous+, DieNet, and Conquerors Electronic Army, the company said.
Destructive ‘wiper’ attacks are a more pressing worry. The precedent for this is the Infamous Iranian Shamoon malware of 2012 that wiped 30,000 workstations at oil company Saudi Aramco. While attempted follow-up attacks have also targeted the energy sector the danger is that in a time of war any target will do, in the US or elsewhere.
Security vendor Anomali warned, “Iran’s wiper arsenal includes 15+ families (ZeroCleare, Meteor, Dustman, DEADWOOD, Apostle, BFG Agonizer, MultiLayer, PartialWasher).”
