An unidentified hacking group, reportedly linked to Israel, has claimed responsibility for disabling Iran’s state-owned Bank Sepah. The group, known as Gonjeshke Darande, or Predatory Sparrow, announced the cyberattack via social media, alleging they deleted critical data, preventing customers from accessing their accounts. The bank’s official website went offline shortly after the announcement. Bank Sepah’s London-based subsidiary has not issued a statement. This attack follows previous claimed operations by the same group, including a 2022 strike on an Iranian steel plant and a 2021 cyberattack that shut down numerous gas stations. Cybersecurity experts suggest the sophistication of these attacks points towards the involvement of a nation-state. The cyberattack coincides with escalating tensions and missile exchanges between Iran and Israel. Former NSA cyber chief Rob Joyce has warned of potential significant economic repercussions from such attacks on the Iranian banking system, potentially undermining its trustworthiness. Iranian authorities have yet to release a detailed statement, and Israel typically refrains from commenting on covert cyber operations. The fate of the bank’s data remains uncertain.
