EN
  • Cyber stability
  • Secops
  • Risks management
  • Digital transformation
  • Digital Sovereignty
  • Cybercrime
  • Industry and OT
  • Fraud
  • Digital identity
  • Cyber +
    • Red Cross hack may be linked to cybercriminals operating for Iran
    • Home
    • Cybercrime
    • Red Cross hack may be linked to cybercriminals operating for Iran

    Red Cross hack may be linked to cybercriminals operating for Iran

    Written by
    The Editorial Team
    02.21.22
    Cybercrime
    01
    MIN
    Red Cross hack may be linked to cybercriminals operating for Iran
    Red Cross hack may be linked to cybercriminals operating for Iran
    Red Cross hack may be linked to cybercriminals operating for Iran
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Image Child protection: UK regulator investigates Telegram and two teen chat sites
    Cybercrime
    04.22.26 Cybercrime
    Next article
    Child protection: UK regulator investigates Telegram and two teen chat sites
    Read
    01
    MIN
    Image Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Cyber +
    04.22.26 Cyber +
    Next article
    Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Read
    08
    MIN

    The email of the cybercriminal who sold the data stolen to the International Committee of the Red Cross (ICRC) was also allegedly used to create sites linked to cyber influence from Iran.

    On 19 January 2022, the International Committee of the Red Cross (ICRC) revealed a cyberattack that led to the theft of personal data of more than 500,000 people receiving Red Cross or Red Crescent assistance. The hack also involved data from the Restoring Family Links programme, which aims to reconnect people separated by war, violence, or migration.

    On the same day, cybersecurity researchers discovered that a hacker called Sheriff was offering the data for sale on a dark web forum, implying that a ransom note had been sent to the ICRC and that it had refused to pay.

    The email used by this Sheriff also appears in an FBI warrant from early 2021 concerning a large-scale cyber influence operation originating in Iran. The email was used to create at least three domain names for fake news sites, aimed at « promoting political narratives consistent with Iranian interests, » including « anti-Saudi, anti-Israeli, and pro-Palestinian themes, » according to FireEye researchers who worked with the FBI.

    The ICRC said it had never been in contact with the perpetrators of the cyberattack, had never received a ransom note and had no evidence of the stolen data being offered for sale.

    https://krebsonsecurity.com/2022/02/red-cross-hack-linked-to-iranian-influence-operation/

    The Editorial Team
    02.21.22
    Articles by the same author:
    1
    05.21.26 Digital transformation
    Sovereign cloud: Thales and Google create a S3NS clone in Germany
    Read
    01
    MIN
    2
    05.21.26 Cybercrime
    GitHub confirms it was hacked by TeamPCP
    Read
    01
    MIN
    3
    05.21.26 Cybercrime
    A 0-day attack against Huawei routers may have caused Luxembourg’s telecom outage in 2025
    Read
    01
    MIN
    4
    05.11.26 Cyber stability
    Canada: more than 42,000 data breaches in the tax system since 2020
    Read
    01
    MIN
    Image Massive data breach hits Asian football two months before the World Cup
    Cybercrime
    04.29.26 Cybercrime
    Next article
    Massive data breach hits Asian football two months before the World Cup
    Read
    01
    MIN
    Image Germany investigates Signal hack targeting its political class
    Cybercrime
    04.27.26 Cybercrime
    Next article
    Germany investigates Signal hack targeting its political class
    Read
    01
    MIN
    Image Child protection: UK regulator investigates Telegram and two teen chat sites
    Cybercrime
    04.22.26 Cybercrime
    Next article
    Child protection: UK regulator investigates Telegram and two teen chat sites
    Read
    01
    MIN
    Image Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Cyber +
    04.22.26 Cyber +
    Next article
    Geert Baudewijns (Secutec): “Cyber negotiation is used to frame the situation very early on”
    Read
    08
    MIN
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.
    Stay tuned in real time
    Subscribe to
    the newsletter
    By providing your email address you agree to receive the Incyber newsletter and you have read our privacy policy. You can unsubscribe at any time by clicking on the unsubscribe link in all our emails.