In a dramatic escalation of the simmering cyber warfare amid heightened geopolitical tensions, Iran’s state-owned television broadcaster was reportedly hijacked mid-broadcast on Wednesday night. Simultaneously, a pro-Israel hacking group claimed responsibility for a massive cryptocurrency heist, siphoning over $90 million from Iran’s largest crypto exchange.
The unexpected interruption on state TV saw regular programming replaced with videos advocating for street protests against the Iranian government. While the exact perpetrators remain unconfirmed, Iranian officials were quick to point fingers at Israel, echoing a long-standing attribution of cyberattacks in the region. The broadcaster acknowledged the disruption, citing “enemy interference with satellite signals.”
This broadcast breach is the latest in a series of cyber incursions targeting Iranian infrastructure, many of which have been linked to Israel. The incident coincided with a sophisticated cyberattack on Bank Sepah, a prominent Iranian state-owned lender, and Nobitex, Iran’s top cryptocurrency exchange.
The Nobitex hack proved to be particularly audacious, resulting in the theft of more than $90 million in various cryptocurrencies, including Bitcoin, Ethereum, and Dogecoin. The hacking group, identified as “Gonjeshke Darande” (Predatory Sparrow), claimed responsibility for the Nobitex breach.
In a striking move, the group stated they “burned” the stolen funds by sending them to computationally inaccessible “vanity addresses” containing anti-Iranian transformative Guard messages. This action suggests a politically motivated attack aimed at inflicting damage and sending a strong message rather than financial gain.
Predatory Sparrow has a history of targeting Iranian critical infrastructure, including previous attacks on gas stations and a steel facility. The timing of these recent cyberattacks aligns with intensifying military exchanges between Iran and Israel, underscoring the growing significance of cyber warfare in modern conflicts.
Cybersecurity experts are highlighting how crypto exchanges, once considered peripheral, are increasingly becoming strategic targets in these geopolitical skirmishes.
Iranian authorities have since imposed an emergency curfew on local crypto exchanges, limiting their operating hours, in an apparent effort to manage systemic risks and regain control over their digital financial landscape.
This dual assault on both public communication and financial systems marks a significant escalation in the ongoing shadow war between the two regional rivals, raising concerns about the potential for further cyber destabilization.
