Monday, August 10, 2015
Iranian Dark Coders Hacking Team: Everywhere and Anywhere but not Harmless
A presentation at American security conference BlackHat USA in Las Vegas, has said that Iran appears to be actively seeking for critical national infrastructure systems connected to the Internet to exploit them.
At BlackHat USA Trend Micro researchers Kyle Wilhoit and Stephen Hilt revealed how their honeypot version of a Vedeer-Root Guardian AST gas gauge monitoring system (nickname «Gaspot») apparently fooled some Iranian hackers.
The Iranian hacking group Iranian Dark Coders, so called IDC-Team, modified the names of two pumps situated in Jordan. The IDC-Team which is best known for defacements and malware distribution, renamed two different tank names in the systems, one as «H4CK3D by IDC-TEAM» and other as «AHAAD Was Here».
IDC-Team
This is not a new thing. As a Google search will show IDC-Team has been hacking websites for a long time. According to their Facebook page the team started in 2012 and have grown since then in to a team with many members on its forum talking about hacks and bugs and computer security.
Over the last year IDC-Team have submitted more than 950 website defacements of targets all over the world. Many of these defacements are government sites (gov.pl, gov.co, gov.in) or companies with famous products (Jeep). This shows that the team have hacking skills that are enough advanced to damage to secure websites.
Why do they hack?
Despite the amount of hacks by IDC-Team and who they hack it is clear their agenda is little more than publicity. Their defacements are advertisements for their community and the individuals involved and they are not messages of hate and violence.
IDC-Team is everywhere and goes anywhere as Trend Micro revealed. However they appear to be looking for recognition as computer security experts and not hacktivists.
Labels:
Blackhat USA,
defacement,
Gaspot,
hacktivists,
honeypot,
IDCT,
iran,
Iranian Dark Coders Team,
Jeep,
Jordan,
malware,
security experts,
Trend Micro
Subscribe to:
Posts (Atom)
-
Safebreach experts report that a new Iranian cyber actor has used a exploit of Microsoft MSHTML Remote Code Execution (RCE) to infect farsi-...
-
It has been reported that Iran airline Mahan Air has be hit by cyberattack. According to news agencies Mahan Air customers received text mes...
-
امروز صبح خبر ناراحتکننده ماجرای دکتر فرهاد میثمی را دیدم. این عکسی از کمپ نازی نیست. او صد در صد قهرمان ایرانیهاست. ما باید صدایش باشیم....
-
Iran confirms that spy malware called Dino is targeting sensitive centers inside the country since one and half years ago. M...
-
Mahdi Karimi, the deputy-director of Ertebatat Zirsakht Communications Company stated in the company's inauguration speech, that ...
-
Symantec has revealed details about malware called "Regin". This shows a multi-stage attack that is capable of being adapted...
-
Just over a month ago, the US announced the indictment of Behzad Mesri (Skote Vahshat) who has been indicted by the FBI for computer fraud,...
-
Iranian state targeted the public and private sector in the US, Israel, UK and beyond using social media. Iranian hackers use more ...