back to article Iran: If the Madi cyber-strike was us it would've been another Stuxnet

Iranian state media has angrily rejected suggestions that the Madi cyber espionage campaign is anything to do with the Islamic Republic. Madi had claimed more than 800 victims located in Iran, Israel, Afghanistan and elsewhere, according to the results of an eight month investigation into the cyber-espionage tool by Kaspersky …

COMMENTS

This topic is closed for new posts.
  1. Aaron Em

    "But it does look like a campaign which requires large investment or financial backing"

    Why? The exact same thing happens every single day, and it's carried out by Turkish and Russian no-accounts running botnets from Internet cafes. Why couldn't this be, say, a Persian nationalist acting on his own hook?

    1. Tom 13

      Re: "But it does look like a campaign which requires large investment or financial backing"

      Both "broad based" and "spear phishing" but with limited regional distribution being run by botnets herders? That doesn't strike me as the right psychological profile. State-run or State-linked sounds more like the right psychology.

      Given the prevalence of Stuxnet and Flame in the area and that Madi isn't using it, I'd guess the relationship with whatever state is linked to the the hackers is tenuous. If it was closely linked to the state I'd expect them to have had samples of those viruses and be working with them.

      1. Aaron Em

        Re: "But it does look like a campaign which requires large investment or financial backing"

        I can buy that -- say he'd be fucking with people regardless, but being the patriot he is (and Persians in my experience often are) he's willing to serve his nation, which is happy to accept said service but prefers to do so in a fashion which can be disavowed should it become necessary to do so. Sound good?

  2. Anonymous Coward
    Anonymous Coward

    "'Cos we're as good as US/Israel!"

    That good, huh. It hardly seems possible.

  3. Siraf72

    Messiah?

    Just a slight correction

    "Madi (AKA Mahdi), named after files used in the malware, references the moniker of the Muslim messiah expected to cleanse the world of wrongdoing and bestow peace and justice before Judgment Day."

    The muslim messiah is Christ, not the Mahdi. The context of his rule is correct but he is a man not a prophet or messiah.

This topic is closed for new posts.

Other stories you might like