update desk

Iran was behind last month’s cyberattack on the Technion

A group affiliated with Tehran’s Ministry of Intelligence and Security was responsible, says the Israel National Cyber Directorate.

A view of the Technion-Israel Institute of Technology campus on the slopes of Mount Carmel in Haifa, Feb. 19, 2019. Photo by Hadas Parush/Flash90.
A view of the Technion-Israel Institute of Technology campus on the slopes of Mount Carmel in Haifa, Feb. 19, 2019. Photo by Hadas Parush/Flash90.

Iran was behind a cyberattack on a major research university in Israel last month, the Israel National Cyber Directorate announced on Tuesday.

An investigation of the hacking attack on the Technion-Israel Institute of Technology in Haifa revealed that a group known as MuddyWater was responsible. The group is affiliated with Iran’s Ministry of Intelligence and Security.

During the attack on Feb. 11, the hackers used malware designed to encrypt operating systems. In response, the Technion unplugged the computer system and asked that students log off and limit their email usage. Some scheduled exams were postponed until the start of the spring semester.

A group calling itself DarkBit sent an email to the Technion during the attack demanding 80 bitcoins in ransom for the information that it claimed to have obtained. That is an amount in digital currency worth $1.79 million.

“The Technion was hacked. The hackers punished us for the ‘apartheid’ regime. All systems are not accessible and we have lost our data. Therefore, we have to temporarily stop our human resources procedures. Our most sincere apologies to all colleagues, partners and those who trust us,” the Technion posted to its LinkedIn account.

The Israel National Cyber Directorate and the Israel Security Agency (Shin Bet) are tasked under the law with handling cyberattacks. Both bodies assist critical companies such as banks and mobile phone carriers in determining how to protect themselves from cyberattacks.

A successful breach could provide hackers access to the devices of thousands of Israelis and collect sensitive data including medical information, compromise bank accounts and disrupt transit and traffic lights.

The Cyber Directorate said that 53 cyberattacks were detected at Israeli academic institutions in 2022, with most attempts blocked.

You have read 3 articles this month.
Register to receive full access to JNS.

Just before you scroll on...

Israel is at war.

JNS is combating the stream of misinformation on Israel with real, honest and factual reporting. In order to deliver this in-depth, unbiased coverage of Israel and the Jewish world, we rely on readers like you.

The support you provide allows our journalists to deliver the truth, free from bias and hidden agendas. Can we count on your support?

Every contribution, big or small, helps JNS.org remain a trusted source of news you can rely on.

Become a part of our mission by donating today
Thank you. You are a loyal JNS Reader.
You have read more than 10 articles this month.
Please register for full access to continue reading and post comments.
Never miss a thing
Get the best stories faster with JNS breaking news updates