It has recently been reported that the Indra hacking group is behind the recent attack on Iranian railway and transport infrastructure. This was publicly exposed on check point research website who named twitter user @Indra17857623 as culprit. This report is very interested as check point research have assessed that Indra is unlikely to be a nation state funded hacking group but then why did they attack Iranian infrastructure?
According to check point research Indra is unlikely to be nation state funded because they said their tools are not sophisticated and they are on twitter which makes them more likely to be a hacktivist group. What is shocking about this is that usually damage against national infrastructure is usually done by other nations however the railway hack clearly suggests that this is not the case anymore.
Check point research say that we should learn the lesson that
we should be more worried about attacks that are possibly but are not going to happen according to wisdom. With all the trouble caused by cybercrimes, hacktivisms and nation state meddling etc the sophistication of attacks is still small and often threat actors do not do thing even though they can and we rely on this too much.
Furthermore check point research also says that this type of attack should cause worry as the only thing stopping the frequency of these attacks is hackers boredom and restraint. In country like Iran where there is little employment and bad economy it is a worry that many skilled hackers could get bored soon and start attacking the state. Should the Islamic Republic be worried about this new hacktivism?
It will be interested to see if this activity persists. Will Indra carry on now that they have been exposed? According to their twitter page Indra is named after the hindu God of war so with such a strong name we can probably expect more from them. They state that they are against the Quds Force and proxies in the region so this might be something that continues for some time to come.
No comments:
Post a Comment