Iran's Rail Network Hit by Possible Cyber Attack, State TV Says

A potential cyber attack on Iran's state railway company created "unprecedented chaos" at stations across the country and led to cancellations and delays on hundreds of lines, state TV reported. From a report: Departure notice boards showed blanket cancellations and carried the message "long delay following cyber attack," the national broadcaster said, adding that the disruption to Islamic Republic of Iran Railways' computer systems also affected station entrances and exits as well as ticket booths. The national rail company's website, www.rai.ir, wasn't loading as of 7.50 p.m. in Tehran. Iranian state TV didn't say where it got the information.

Stuxnet.

[Ostracus]

Did anyone check for USB sticks in the parking lot?

Making friends worldwide.

[Gravis Zero]

I see Russian hackers are doing quite the job of making friends all over the globe. Putin is mistaken if he thinks nations are going to simply forget about his indifference to this behavior.

Re:

[ShanghaiBill]

Why would Russian hackers attack Iranian railway stations?

Where is the monetary gain?

The hackers posted notices attacking Khamenei. So this appears to be motivated by politics, not money.

Re:

[Gravis Zero]

Why would Russian hackers attack Iranian railway stations?

Like always, to demand ransom.

Where is the monetary gain?

If it's ransomware then... the ransom.

The hackers posted notices attacking Khamenei.

This wasn't in anything I read. Do you have a link?

Re:Making friends worldwide.

[ShanghaiBill]

Like always, to demand ransom.

Except there was no ransom demand.

The hackers posted notices attacking Khamenei.

This wasn't in anything I read. Do you have a link?

Here you go [apnews.com].

Re:

[Gravis Zero]

Interesting. It seems like just an amateur hacker having fun. I wouldn't be surprised if it was just some random Iranian kid.

Re:

[whoever57]

Why would Russian hackers attack Iranian railway stations?

Maybe they didn't.

Perhaps this is just another mistake by an overworked and under-qualified IT guy and the convenient way to avoid blame is to blame it on Russian hackers.

Re: Making friends worldwide.

[1s44c]

I'll bet you Khamenei doesn't get the train. You know who gets the train? Working people who are just trying to provide for their families and can't help where they were born.

Re:

[BardBollocks]

IKR.

There are two countries interested in Destabilising Iran.

1. The United States.
2. Israel.

Who has a documented history of cyberattacks in Iran... that's right the US and Israel.

Re: Making friends worldwide.

[reanjr]

This is probably Israel.

Re:

[Gravis Zero]

This is probably Israel.

I haven't seen any Israeli operations that are strictly to cause chaos so if it was them then they would need a very good reason to expose their operations in such a public manner. Alternatively, if they flubbed and accidentally corrupted the entire system instead of making a minor change then that could be an explanation.

Re:

[Bearhouse]

What? I'm no defender of Israel's abuses (see my posting history) but calling them "the biggest state sponsor of terrorism and genocide" is such utter bullshit that it makes a mockery of the last part of your post which is actually fairly insightful. The USA should have pushed all parties into an agreement (for the Palestinians) long ago, (and got very close under the Clinton administration) but have always been foiled by lunatics - on both sides - who quite simply don't want peace, because they would los

Re:

[yuvcifjt]

Research further how since prior to 9/11, the apartheid state has been meddling in western democracies, including using state-sponsored lawyers, bribing ("lobbying") politicians, in order to bomb / overthrow / control other nations.

The apartheid regime isn't simply interested in killing off all Palestinians and arabs, and its state-sponsored lobbyists aren't there to wave flags or talk about the greatness of Israel, they are involved in countless other covert activities which undermines "democracy" and make

Re:

[Gravis Zero]

It's strange why the bogeyman in the west is always Russia,

Not really considering REvil has been a lot of high-profile ransomware attacks. Before it was mostly Romanians but the Russians seem to have become more prolific.

If you followed security then you would know this already.

Re:

[i'm probably drunk]

"Russian hackers" [giphy.com]

Re:

[takionya]

Gravis Zero > I see Russian hackers are doing quite the job of making friends all over the globe. Putin is mistaken if he thinks nations are going to simply forget about his indifference to this behavior

I thought the Ruskies and Iranians were allies. More likely a drive-by on Microsoft Windows.

Hey, maybe

[lessSockMorePuppet]

Maybe the Iranians will nuke the responsible party and solve the ransomware epidemic for us.

Re:

[kot-begemot-uk]

Their missiles do not have the range to the Baltic states. They can get as far as Georgia though. There, the cat is out of the bag and the elephant in the corner of the room can stop pretending it is not there.

While most of the ransom is transferred in Bitcoins, these bitcoins still need to be laundered and made into real money. That service, funnily enough, is not available from any Russian financial institution.

Russian banks cannot touch BTC with a barge pole despite the fact that BTC stopped illegal [cnbc.com]

Re:

[eneville]

The only "responsible" party is the operator who installed the computers. If they ch ... ch ... choose a weak OS for a rail network then they cannot act surprised that a nation state or a script kiddie found a way to attack it.

Ransomware or turning your network into a botnet or clickfarm, makes no odds, putting something weak on the internet, or intranet, is just not fit for purpose.

I'm tired of watching news article after news article of complaint and finger pointing towards nation states expecting some ou

Israel or Saudis?

[BAReFO0t]

That's the question.

Evil tongues say What does it matter, since both are arms of the USA. ;)

Re:

[Bearhouse]

Nah. Looks (or has been made to look like) home-grown.

TEHRAN, Iran -- Iran's railroad system came under cyberattack on Friday, a semi-official news agency reported, with hackers posting fake messages about alleged train delays or cancellations on display boards at stations across the country.

The hackers behind the strike were apparently trying to be funny, and along with messages saying âoelong delayed because of cyberattack" or âoecanceled,â they urged passengers to call for information, li

response...

[guygo]

in kind?

Adobe Flash again?

[BLToday]

Were they using Flash to control the trains?

Infrastructure runs on unsupported win servers

[laughingskeptic]

Maybe running their infrastructure on pirated copies of unsupported Windows products isn't the best idea. RAI has been an easy target for a while, wouldn't be surprised if the attackers were anti-social children.

Really?

[barryvoeten]

So since when are the Russians the enemy of Iran. Since when can you really tell who is behind any attack at all, cyber or real life? Since when do press releases really tell the truth when it comes to war?