The FBI has warned that the Iranian cyber group Emennet Pasargad is conducting hack-and-leak operations involving a combination of hacking and theft of data.
In a statement released on Thursday, the US agency said that since at least 2020 the group targeted entities primarily in Israel with cyber-enabled information operations that included an initial intrusion, theft and subsequent leak of data followed by amplification through social media and online forums, and in some cases the deployment of destructive encryption malware.
The FBI added that the Iranian group used false-flag campaigns under the guise of multiple personas like hacktivist or cyber-criminal groups. The company, previously known as Eeleyanet Gostar and Net Peygard Samavat, has regularly rebranded to evade US sanctions
The FBI added that the group’s techniques may be used to target US entities, as was the case during their cyber-enabled information operation to attack the 2020 US Presidential election. Saying that the FBI has identified a destructive cyberattack against a US organization, it underlined that the group remains a threat to the US.
On Wednesday, October 19, the US State Department announced a $10-million reward for information about the group’s operations or its members.
Back in February, the US offered up to $10 million for information leading to the arrest of two of the group's members for trying to influence and interfere with the 2020 presidential election.
In November 2021, the Treasury Department sanctioned six Iranian officials as well as the company for their involvement in the planned cyberattack.