Iran-based malware that demands a digital ransom in cryptocurrencies is on the rise and will further escalate in the present geopolitical climate, according to a report published by global management consulting firm Accenture on August 7.
After two years of analysis, Accenture Security iDefense predicts that emerging trends in the Iranian cyber threat landscape will intensify as the country is forced into a defensive and economically straitened position in the wake of the U.S. exit from the Obama-era Iran nuclear accord this spring.
With the US set to imminently to reimpose tough economic sanctions, Accenture has warned that the ransomware it has found "Could have been created by government-backed actors or Iranian criminals, or both," as the Wall Street Journal further reports.
Accenture has tracked five new types of ransomware - some of which demand "Staggering" crypto ransoms - that its analysis has traced back to hackers in Iran based on samples that contain messages in Farsi as well as other clues pointing to Iranian computer systems.
"WannaSmile" - a zCrypt variant that Accenture discovered in November 2017 - asks for a 20 Bitcoin payment in a Farsi ransom note and also advertises local Iran-based payment processors and exchanges through which victims can acquire the cryptocurrency.
Another sample, "Black Ruby," has been programmed to spare computers with an Iranian IP address, but otherwise encrypts and scrambles the target's files, as well as infects the machine with a resource-hungry Monero miner.
The ransom for so-called Black Ruby, which Accenture discovered in February 2018, is $650 in BTC. The report says that the increase in ransomware activity suggests that Iran-based actors are "Financially motivated to target global organizations by using ransomware and cryptocurrency miners for financial gain," although it notes that.
"Based on current Iranian policy, the feud may not lead to any disruptive or destructive cyberattack against the United States or European counterparts in the near future."
Accenture's report adds that the Iranian government might instead target its neighbors - like Saudi Arabia, the United Arab Emirates, Bahrain, and Israel -as they supported the U.S. decision to pull out of the nuclear agreement.
As of May, Iranians were estimated to have siphoned $2.5 billion out of the country in crypto, notwithstanding the central bank's move to ban local financial institutions from dealing in crypto earlier this spring.
Iranian Crypto Ransomware Threat Will Rise in Today's Geopolitical Climate, Report Predicts
gepubliceerd op Aug 8, 2018
by Cointele | gepubliceerd op Coinage
Coinage
Recent nieuws
Alles zien
Blockchain Bites: Bitcoin's Run, Uniswap's Hemorrhaging Value, Anchorage's Banking Bid
Bitcoin is nearing all-time highs in price and market cap last set three years ago.
Japan's megabanks to lead experiment with digital yen
We have, in order, Cheese Bank with a $3.3 million theft, Akropolis with its $2 million loss, Value DeFi with a whopping $6 million exploit and finally Origin Protocol's loss of $7 million.
Number of new Bitcoin addresses spikes amid growing FOMO
Japan's three largest banks, as part of a group of 30 private sector actors, are set to collaborate on an experiment with a digital yen.
Not just Wall Street: Quant trader explains why Bitcoin price is going up
Sam Trabucco, a quantitative trader at Alameda Research, believes four general factors are pushing up the price of Bitcoin.