Representations of bitcoin are seen in this illustration photo.
DUBAI, United Arab Emirates (AP) — Hackers with possible links to Israel have drained more than $90 million from Nobitex, Iran's largest cryptocurrency exchange, according to blockchain analytics firms.
The group that claimed responsibility for the hack leaked on Thursday what it said was the company's full source code. "ASSETS LEFT IN NOBITEX ARE NOW ENTIRELY OUT IN THE OPEN," the group wrote on its Telegram account.
The stolen funds were transferred to addresses bearing messages that criticized Iran's Revolutionary Guard, Blockchain analytics firm Elliptic wrote in a blog post. It said the attack likely was not financially motivated as the wallets the hackers had poured the money into "effectively burned the funds in order to send Nobitex a political message."
The hackers group, Gonjeshke Darande — "Predatory Sparrow" in Farsi — accused Nobitex of having helped Iran's government to evade Western sanctions over the country's rapidly advancing nuclear program and transfer money to militants, in a post on X claiming the attack.
Nobitex appeared to have confirmed the attack. Its app and website were down as it assessed "unauthorized access" to its systems, it said in a post on X.
The theft spanned a range of cryptocurrencies, including Bitcoin, Ethereum, Dogecoin and more, said head of national security intelligence at Chainalysis Andrew Fierman. The breach is "particularly significant given the comparatively modest size of Iran's cryptocurrency market," he added.
The hack appears to be motivated by escalating tensions in the Israel-Iran conflict, which broke out last week when Israel struck Iran's nuclear sites and military officials, drawing Tehran's response with barrages of missiles. It came after the group said it had destroyed data in a cyberattack against Iran's state-controlled Bank Sepah on Tuesday.
Elliptic said that relatives of Iran's Supreme Leader Ali Khamenei were linked to the exchange and that sanctioned Revolutionary Guard operatives had used Nobitex. It shared evidence that the exchange had sent and received funds from cryptocurrency wallets controlled by Iranian allies including Yemen's Houthis and Hamas.
Gonjeshke Darande has previously claimed responsibility for other high-level cyberattacks against Iran, including a 2021 operation that paralyzed gas stations and a 2022 effort against a steel mill that sparked a large fire.
Israeli media have widely reported that Gonjeshke Darande is linked to Israel but the country's government has never officially acknowledged ties to the group.
U.S. Senators Elizabeth Warren and Angus King last year raised concerns about Iran's use of cryptocurrencies to evade sanctions.
Please purchase a Premium Subscription to continue reading.
To continue, please log in, or sign up for a new account.
We offer one free story view per month. If you register for an account, you will get two additional story views. After those three total views, we ask that you support us with a subscription.
A subscription to our digital content is so much more than just access to our valuable content. It means you’re helping to support a local community institution that has, from its very start, supported the betterment of our society. Thank you very much!
Only subscribers can view and post comments on articles.
Already a subscriber? Login Here
Puffs, or Seven Increasingly Eventful Years at a Certain School of Magic and Magic, is a fas… Read moreAragon High School Theatre presents "Puffs"
Join us for this fun community gathering. There will be a resource fair, music and a raffle.… Read moreBelmont Senior Showcase
Art Without An Artist: Can AI Be Considered An Artist? Read moreART WITHOUT AN ARTIST: Can AI be Considered an Artist?
Ready to dive into the world of Accessory Dwelling Units? Join us in person for a casual, in… Read moreBuild Your ADU Seminar: From Permits to Keys
Exclusive film screening in San Mateo Read moreA LITTLE FELLOW: THE LEGACY OF A.P.GIANNINI
Planning your dream wedding? Discover everything you need at the Wedding Fair in the Park – … Read moreWedding Fair in the Park
Dirk van Ulden said:
Dirk van Ulden said:
Success! An email has been sent to with a link to confirm list signup.
Error! There was an error processing your request.
Sorry, an error occurred.
Already Subscribed!
Cancel anytime
Thank you .
Your account has been registered, and you are now logged in.
Check your email for details.
Submitting this form below will send a message to your email with a link to change your password.
An email message containing instructions on how to reset your password has been sent to the email address listed on your account.
No promotional rates found.
Secure & Encrypted
Thank you.
Your gift purchase was successful! Your purchase was successful, and you are now logged in.
| Rate: | |
| Begins: | |
| Transaction ID: |
A receipt was sent to your email.
(0) comments
Welcome to the discussion.
Log In
Keep the discussion civilized. Absolutely NO personal attacks or insults directed toward writers, nor others who make comments.
Keep it clean. Please avoid obscene, vulgar, lewd, racist or sexually-oriented language.
Don't threaten. Threats of harming another person will not be tolerated.
Be truthful. Don't knowingly lie about anyone or anything.
Be proactive. Use the 'Report' link on each comment to let us know of abusive posts.
PLEASE TURN OFF YOUR CAPS LOCK.
Anyone violating these rules will be issued a warning. After the warning, comment privileges can be revoked.