Source Code of Iranian Cyber-Espionage Tools Leaked on Telegram (zdnet.com) 23
In an incident reminiscent of the Shadow Brokers leak that exposed the NSA's hacking tools, someone has now published similar hacking tools belonging to one of Iran's elite cyber-espionage units, known as APT34, Oilrig, or HelixKitten. From a report: The hacking tools are nowhere near as sophisticated as the NSA tools leaked in 2017, but they are dangerous nevertheless. The tools have been leaked since mid-March on a Telegram channel by an individual using the Lab Dookhtegan pseudonym. Besides hacking tools, Dookhtegan also published what appears to be data from some of APT34's hacked victims, mostly comprising of username and password combos that appear to have been collected through phishing pages. ZDNet was previously aware of some of these tools and victim data after this reporter received a tip in mid-March. In a Twitter DM, a Twitter user shared some of the same files that were discovered today on Telegram, and we believe that this Twitter user is the Telegram Lab Dookhtegan persona.
Here it is (Score:4, Funny)
READY> 10 PRINT "Death to America!!"
READY> 20 GOTO 10
READY> RUN
Re:Here it is (Score:4, Funny)
READY> 20 FORK
READY> 30 GOTO 10
READY> RUN
Re: (Score:2)
That's the more sophisticated NSA version.
Re: (Score:2)
OK. As a code illiterate, what does FORK command do?
Tools vs Scams (Score:4)
USA vs Iran, you can hardly compare windows update firmware attacks (no anonymous windows updates anymore) to phishing attacks, just don't open those emails. I forward all mine to https://www.acma.gov.au/Citize... [acma.gov.au]. Although phishing attacks are not quite spam, I am sure they will have no problem telling the difference and acting appropriately. I forward all spam that get's past the various filters to my inbox, especially the very naughty ones and there have been quite few of them from all over the place.
Lab Dokhtagan meaning (Score:2, Interesting)
If anyone is curious, Lab Dokhtagan in Farsi means, the ones whose lips are stitched.
Re: (Score:2)
God bless Iran?
You do know that they're rooting for another imaginary buddy, right?
Re: (Score:2)
God bless Iran?
You do know that they're rooting for another imaginary buddy, right?
Same imaginary buddy, different imaginary attitude, different imaginary name.
Re: (Score:2)
The moment when you find out that your buddy knows your girlfriend by another name and thinks she's his girlfriend...
Re: (Score:2)
Same imaginary buddy, fewer imaginary multiple personalities.
This remembers me of... (Score:2)
why censor the links? (Score:2)
I was curious about the source code but ZDNet blurred out the links. What benefit is there in doing that? It won't stop anyone who is motivated and did they even do the same for the NSA tool leak? Sure seems like they are kowtowing the Iranians.
Re: (Score:3)
Everything is zipped up on Github. Check /r/netsec on Reddit for the actual link.