New Iran Cyber Attacks will Target Android Apps

Cybersecurity experts are warning that Iran is preparing cyber attacks against mobile device users. Ransomware and malware attacks are expected to target mobile Android-based devices. Users should be especially cautious toward unofficial markets that offer Android apps.

Azadi Tower, Azadi Square, Tehran, Iran

Accenture iDefense wrote in a recent cyber threat report that its intelligence team has measured a “significant uptick” in cyber attack campaigns launched from Iran. The report, titled “Cyber Threatscape Report 2018,” expects these attacks to increase in frequency into 2019.

Both state actors and Iranian hacktivists seem to favor attacking apps that are unverified by the Google app store. These attacks seek to plant malware into mobile devices. Buyers should also be forewarned that Iranian hackers are working to plant malicious code into verified apps at the Google store, Accenture wrote.

The cybersecurity company is tracking an Iranian gang called Pipefish. This group is attacking organizations in the Middle East for espionage purposes. The attack could target Israel, Saudi Arabia, Bahrain and other countries that supported the US and its decision to cancel the controversial Iran nuclear accord.

Pipefish has developed a toolbox that exploits machines to carry out remote execution commands. The gang has apparently used a crypto-jacking exploit that has already shut down or disrupted Middle East pipelines and facilities.

Tehran Iran

Ransomware, though, appears to be the tool of choice from Iran, Accenture wrote. The Islamic Revolutionary Guard is the main actor in the use of ransomware.

According to the cybersecurity analysis, the ransomware attackers will demand crypto ransoms – payment in Bitcoin. One ransomware called “Black Ruby” scrambles and encrypts files and demands $650 in crypto-coin BTC.

The impetus behind this latest cyber warfare appears to be that the Iranian mullahs and the country’s criminal class are angry that the United States is clamping sanctions on the country again. The sanctions will hit Iran hard in its wallet. Thus, Iranian state actors and the criminal element will use cyber attacks to steal cash.

People who download Android apps, especially from unapproved sources, should exercise extreme caution. Cybersecurity experts are warning that the Iranians are on the prowl, looking for ways to snatch cash from Android users.

Isaac Adams-Hands

Full Stack Developer, Digital Marketer, and InfoSec enthusiast. He received his Bachelor’s Degree from the University of Western Sydney and his Business Diploma from Georgian College before joining various marketing positions in search portals, e-commerce, higher education, and addiction recovery services.

Follow @ twitter

Related posts

How-to: Remove Malware from WordPress

Malware, or malicious software, is any application or document that’s harmful to a computer user. Malware contains computer viruses, worms, Trojan horses and spyware.

5 Top Cybersecurity Threats We’ll Face in 2019

Last year saw an estimated 1,244 US data breaches with over 400 million records exposed. Are industries better prepared this year to defend against attack? An essential part of strong security is knowing the year’s top cybersecurity threats. This includes familiar threats like ransomware and unfamiliar threat trends too. Digital trends like Internet of Things will see… Read More