Iranian IT-company Supply-Chain Attack in Bahrain

basic information

description

Iranian nation-state hackers compromised a Bahrain-based IT company that works with not further specified cleints of the Bahrain government who were their ultimate target. Besides that they compromised a not more precisely defined government-owned organiazation in the Middle East that works with the defense and transportation sector.

sources attribution

Not available

sources politicalization

Not available

start

01.09.2021

end

01.10.2021

source incident detection disclosure

Incident disclosed by IT-security company

receiver

label:

Not available

category:

Unknown

Corporate Targets (corporate targets only coded if the respective company is not part of the critical infrastructure definition)

country:

Bahrain

label:

Not available

category:

Unknown

Corporate Targets (corporate targets only coded if the respective company is not part of the critical infrastructure definition)

country:

Middle East (region)

inclusion criteria

Attack conducted by nation state (generic “state-attribution” or direct attribution towards specific state-entities, e.g., intelligence agencies)

articles

https://www.microsoft.com/security/blog/2021/11/18/iranian-targeting-of-it-sector-on-the-rise/

added to database

15.08.2022

attributions

articles

Not available

attribution date

2021

attribution basis

IT-security community attributes attacker

attributing country

Not available

attributing actors

Not available

attribution type

Technical report (e.g., by IT-companies, Citizen Lab, EFF)

initiators

label:

DEV-0056

category:

State

countries:

Iran, Islamic Republic of

legal attribution references

Not available

technical categories

Incident/Operation Type

Data theft

Hijacking with Misuse

data theft

For private / commercial targets: non-sensitive information (incident scores 1 point in intensity)

disruption

none

hijacking

Hijacking, system misuse, e.g., through data theft and / or disruption (incident scores 2 points in intensity)

Physical Effects (temporal)

none

Physical Effects (spatial)

none

unweighted cyber intensity

Target / Effect Multiplier

Moderate - high political importance

weighted cyber intensity

Low / moderate intensity - 3

MITRE: Initial Access

Not available

MITRE: Impact

Not available

Common Vulnerability Scoring System: User Interaction

Not available

Zero Day

political categories

cyber conflict issue

International power

offline conflict issue

Unknown

offline conflict intensity

Unknown

casualties

No casualties as a direct result of the cyber incident

political response

Not available

legal categories

state responsibility indicator

Not available

il breach indicator

Not available

response indicator

Not available

Evidence for Sanctions Indicator

Not available

legal response

Not available

impact indicator

Not available