Iranian cloud company accused of hosting cybercriminals, nation-state hackers

[correlate]

[correlate]

Level 18
Thread author
Top Poster
Well-known
May 4, 2019
801
Content source
https://therecord.media/iran-company-providing-ransomware-infrastructure
An Iranian technology company is providing infrastructure services to ransomware gangs and an array of nation-state hackers, researchers have found.
A report released Tuesday by the cybersecurity firm Halcyon details how the internet service provider Cloudzy accepts cryptocurrency in exchange for the anonymous use of technological services used to carry out cyberattacks.
The company allegedly provides a range of services to prolific ransomware gangs like BlackBasta and Royal while also serving as the backbone of attacks for government hackers from North Korea, Russia, China, India, Pakistan, and Vietnam. The infrastructure is even allegedly used by controversial Israeli spyware vendor Candiru.
Click to expand...
therecord.media

Iranian cloud company accused of hosting cybercriminals, nation-state hackers

An Iranian technology company is providing infrastructure services to ransomware gangs and an array of nation-state hackers, researchers have found.
therecord.media therecord.media
 
  • Wow
  • +Reputation
Reactions: piquiteco, vtqhtr413, Nevi and 2 others
vtqhtr413

vtqhtr413

Level 26
Verified
Top Poster
Well-known
Aug 17, 2017
1,492
A well-known US web hosting company has been found to be providing its services to more than 20 state-sponsored hacking groups, including those working for China, North Korea, and Russia. Deeper investigation also uncovered that Cloudzy’s management went to lengths to stay hidden. The company claims to work from New York City and is registered in Wyoming, however its support phone number leads to Las Vegas.

Halcyon claims, with “high confidence”, that the people that set up Cloudzy only did it to create a front for AbrNOC, an Iranian cloud hosting company. Both firms have the same logo (albeit in different colors) and the employees listed on both websites are the same (both made up names, the researchers claim). The CEO of AbrNOC is apparently called Hannan Nozari, and his Twitter bio shows him as a founder both web hosting companies, it was said.

Roughly half of all of Cloudzy’s servers were used for malicious work, the researchers added. While TechCrunch’s journalists couldn’t get ahold of Nozari, Reuters allegedly did, and he told the agency Cloudzy wasn’t responsible for what its clients were doing and that the firm was doing “everything we can” to eliminate them. He added that only 2% of the company’s clients were malicious.
Click to expand...
www.techradar.com

Top US internet hosting company acting as global cybercrime center

Some two dozen hacking collectives were using Cloudzy services
www.techradar.com www.techradar.com
 
  • Like
Reactions: piquiteco, silversurfer and [correlate]
You must log in or register to reply here.

Similar threads

T
    • Like
Microsoft Warns of Ransomware Attacks by Iranian Phosphorus Hacker Group
Replies
0
Views
533
News Archive
TedCruz
T
Stopspying
    • +Reputation
    • Wow
PLAY ransomware group claims attack on Arnold Clark, one of Britain’s largest car dealerships
Replies
0
Views
472
News Archive
Stopspying
Stopspying
vtqhtr413
    • Like
Microsoft Warns of a New Russian State-Sponsored Hacker Group
Replies
0
Views
873
News Archive
vtqhtr413
vtqhtr413

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top