The United States on Friday charged and sanctioned nine Iranians and an Iranian company for attempting to hack into hundreds of universities worldwide, dozens of companies and parts of the U.S. government, including its main energy regulator, on behalf of Tehran’s government. Iran hacked American universities to steal research materials.
The cyber attacks, beginning in at least 2013 during Barack Obama tenure, pilfered more than 31 terabytes of academic data and intellectual property from 144 U.S. universities and 176 universities in 21 other countries, the U.S. Department of Justice said, describing the campaign as one of the largest state-sponsored hacks ever prosecuted.
The U.S. Treasury Department said that it was placing sanctions on the nine people and the Mabna Institute, a company U.S. prosecutors characterized as designed to help Iranian research organizations steal information.
U.S. Deputy Attorney General Rod Rosenstein said the nine Iranians were considered fugitives who may face extradition in more than 100 countries if they travel outside of Iran.
Authorities “will aggressively investigate and prosecute hostile actors who attempt to profit from America’s ideas by infiltrating our computer systems and stealing intellectual property,” Rosenstein said at a news conference.
He said the case “will disrupt the defendants’ hacking operations and deter similar crimes.”
The hackers were not accused of being directly employed by Iran’s government. They were instead charged with criminal conduct waged primarily through the Mabna Institute on behalf of the Islamic Revolutionary Guard Corps, the elite military force assigned to defend Iran’s Shi’ite theocracy from internal and external threats.
There was no immediate response to the charges and sanctions in Iran’s state-run media as the U.S. accuses Iran hacked American universities to steal research materials.
The targeting of the Federal Energy Regulatory Commission, or FERC, was especially concerning, U.S. Attorney Geoffrey Berman said, because it oversees the interstate regulation of energy in the United States and holds details of some of the country’s “most sensitive infrastructure.”
Hackers targeted email accounts of more than 100,000 professors worldwide, half located in the United States, and compromised about 8,000 of them, prosecutors said. Hackers also targeted the U.S. Labor Department, the United Nations and the computer systems of the U.S. states Hawaii and Indiana, prosecutors said.
Friday’s actions are part of an effort by senior cyber security officials at the White House and across the U.S. government to blame foreign countries for malicious hacks.
They were announced a day after U.S. President Donald Trump named John Bolton, a former U.S. ambassador to the United Nations who is deeply skeptical of the 2015 international nuclear accord with Iran, as his new national security adviser. Trump himself has repeatedly cast doubt on the nuclear deal, in which the U.S. and other world powers eased sanctions in exchange for Tehran putting limits on its nuclear program.
INTERNET FIRMS ALERTED
The Department of Justice on Friday privately warned major internet infrastructure companies to expect attacks from Iran, an executive at one company who received the alert said. The officials said the most likely retaliation would be denial of service attacks on websites, which are not destructive but disrupt commerce and communication.
Britain’s National Cyber Security Centre said on Twitter that the Mabna Institute was “almost certainly responsible for cyber attacks targeting universities around the world.”
Last week, the administration accused the Russian government of cyber attacks stretching back at least two years that targeted the U.S. power grid. Washington imposed new sanctions on 19 Russians and five groups, including Moscow’s intelligence services, for meddling in the 2016 U.S. election and other cyber attacks.
Reuters contributed to this article.