9 Iranian Hackers Charged in Cyber Attacks on Colleges, Gov’t Agencies

The hackers targeted 144 American universities, 176 other universities across 21 countries, 47 private sector companies and several government agencies.

9 Iranian Hackers Charged in Cyber Attacks on Colleges, Gov’t Agencies

The hackers face extradition to the U.S. in over 100 countries if they travel outside of Iran.

The Department of Justice charged nine Iranians on Friday in a massive hacking conspiracy that targeted hundreds of American universities and government agencies.

The cyber attack amounted to “one of the largest state-sponsored hacking campaigns ever prosecuted by the Department of Justice,” according to Geoffrey Herman, U.S. Attorney for the Southern District.

Targeted entities included 144 American universities and an additional 176 universities across 21 foreign countries. The hack also affected 47 private sector companies, government agencies such as the U.S. Department of Labor and the Federal Regulatory Commission, and the state of Hawaii and Indiana, as well as the United Nations, reports Wired.

Through the cyber attacks, which date back to at least 2013, hackers stole more than 31 terabytes of information totaling over $3 billion in intellectual property.

The U.S. Treasury Department says sanctions will be placed on the nine individuals and the Tehran-based Mabna Institute, a company prosecutors describe as a business designed to help Iranian research organizations steal information.

The hackers have been charged with criminal conduct waged primarily through the Mabna Institute on behalf of the Islamic Revolutionary Guard Corps, an elite military force assigned to defend Iran’s Shi’ite theocracy.

Iranian Hackers Targeted Professors’ Email Accounts, Sold Data to Iranian Universities

The hackers targeted the email accounts of more than 100,000 professors worldwide, half of whom were in the U.S., and compromised about 8,000 such accounts, according to Reuters.

The indictment filed in U.S. District Court in New York says the hackers sent “spearphishing” emails tailored to the academic interests of university professors after conducting extensive background research on them.

The emails claimed to be from professors at another university and indicated the sender had read an article written by the recipient. They also contained links, supposedly to related articles, that directed them to a malicious internet domain that looked similar to the victims’ actual university portal. Once there, they were prompted to enter their login credentials to proceed.

After the hackers gained access to the accounts, they stole academic data and intellectual property related to science and technology, engineering, social sciences and medicine, according to the indictment.

The stolen data was then sold to Iranian universities through websites Megapaper and Gigapaper.

Hackers Face Extradition; Iran Spokesman Condemns Charges

U.S. Deputy Attorney General Rod Rosenstein says the hackers are considered fugitives who may face extradition to the U.S. in more than 100 countries if they travel outside of Iran. Those sanctioned will also have American assets frozen.

Authorities “will aggressively investigate and prosecute hostile actors who attempt to profit from America’s ideas by infiltrating our computer systems and stealing intellectual property,” Rosenstein said at a news conference.

Britain’s National Cyber Security Centre said on Twitter that the Mabna Institute was “almost certainly responsible for cyber attacks targeting universities around the world.”

On Friday, the Department of Justice also privately warned major internet infrastructure firms to expect attacks from Iran, according to an executive at one company.

Officials predict retaliation will include denial of service attacks on websites, which are not destructive but disrupt commerce and communication.

Iran’s foreign ministry spokesman Bahram Qasemi condemned the charges as “provocative, illegitimate, and without any justifiable reason and another sign of the hostility of the (U.S.) ruling circles toward the Iranian nation.”

About the Author


Amy is Campus Safety’s Senior Editor. Prior to joining the editorial team in 2017, she worked in both events and digital marketing.

Amy’s mother, brother, sister-in-law and a handful of cousins are teachers, motivating her to learn and share as much as she can about campus security. She has a minor in education and has worked with children in several capacities, further deepening her passion for keeping students safe.

In her free time, Amy enjoys exploring the outdoors with her husband, her son and her dog.

Read More Articles Like This… With A FREE Subscription

Campus Safety magazine is another great resource for public safety, security and emergency management professionals. It covers all aspects of campus safety, including access control, video surveillance, mass notification and security staff practices. Whether you work in K-12, higher ed, a hospital or corporation, Campus Safety magazine is here to help you do your job better!

Get your free subscription today!

Subscribe Today!

Leave a Reply

Your email address will not be published. Required fields are marked *

Get Our Newsletters
Campus Safety Conference Registration Open Promo Campus Safety HQ