back to article Where China leads, Iran follows: US warns of 'contract' hackers exploiting Citrix, Pulse Secure and F5 VPNs

Where Chinese hackers exploit, Iranians aren’t far behind. So says the US Cybersecurity and Infrastructure Security Agency, which is warning that malicious persons from Iran are exploiting a slew of vulns in VPN products from Citrix, F5 Networks and Pulse Secure. The warning mirrors one issued earlier this week for exactly the …

  1. _LC_

    >> The Iranians are said to make “significant” use of ngrok... <<

    Says who? Have they been caught lying before - MAYBE?!?

  2. Pascal Monett Silver badge

    "malicious persons from Iran"

    Well isn't there a simple solution ? Block all Iran IP addresses on the router, problem solved.

    I can understand that media sectors and, eventually, financial sectors could welcome IP traffic from Iran, but please explain how exactly an Iranian citizen in Iran is going to sign up for US healthcare, insurance or use US government facilities ? Don't they all require US residency ?

    Maybe there are dual-citizenship US/Iranian people who regularly go to Iran, but they can understand that they need to be in the US to conduct their US business. And a VPN is not all that expensive.

    Why is it that key government websites accept traffic from any country other than their own anyway ? I fail to see what benefit a Chinese citizen in China can find in browsing, especially as that site is exclusively in French, and they don't have a login anyway.

    1. redpawn

      Re: "malicious persons from Iran"

      Yes, I'm sure they are using their bad guy IP address as a badge of honor or can't figure out how to appear to come from somewhere else.

      I know I love to have my services cut off when traveling. Not having my banking info available makes me feel safe.

    2. Arachnoid

      Re: "malicious persons from Iran"

      They infiltrate local IP addresses and use those as a proxy subterfuge to then enrol in the services, simples init bro.

  3. Anonymous Coward
    Anonymous Coward


    I like Keepass, I'd like to know about how they hacked it, and if Keepass has a update planned to resolve this.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like