A cyberattack against the Albanian government in mid-July disrupted government websites and public services for several hours. Russia is considered the most likely suspect in the attack, but a study released this week by security firm Mandiant identified Iran as the perpetrator . The attack took place on July 17 before the Free Iran World Summit scheduled for July 23-24 in Albania, Albania. The summit was then postponed the day before it began due to the alleged threat of terrorism. The attackers deployed the Roadsweep family of ransomware, possibly leveraging a previously unknown backdoor, Chimneysweep, and a new variant of the Zeroclear dropper, researchers said. Iran has previously engaged in cyber hacking activities mainly in the Middle East, especially Israel. But the cyberattack against Albania was not about stealing data, but about sabotage, affecting the daily lives of Albanians, and forcing the Albanian government to respond.
This article is reprinted from: https://www.solidot.org/story?sid=72382
This site is for inclusion only, and the copyright belongs to the original author.