Seven Iranian hackers conducted a coordinated cyber attack on dozens of U.S. banks, causing millions of dollars in lost business, and tried to shut down a New York dam, the U.S. government said on Thursday in an indictment that for the first time accused individuals tied to another country of trying to disrupt critical infrastructure.
It said the seven accused were believed to have been working on behalf of Iran’s government and the Islamic Revolutionary Guard. Those named live in Iran and the Iranian government is not expected to extradite them. There was no immediate comment from Tehran.
At least 46 major financial institutions and financial sector companies were targeted, including JPMorgan Chase
The hackers are accused of hitting the banks with distributed-denial-of-service attacks on a near-weekly basis, a relatively unsophisticated way of knocking computer networks offline by overwhelming them with a flood of spammed traffic.
“These attacks were relentless, they were systematic, and they were widespread,” U.S. Attorney General Loretta Lynch told a Washington news conference.
The indictment from a federal grand jury in New York City said the attacks occurred from 2011 to 2013. Washington has previously accused military officers from China and the North Korean government of cyber attacks against U.S. businesses.
The attack on the Bowman Avenue Dam in Rye Brook, New York, was especially alarming, Lynch said, because it represented a known intrusion on critical infrastructure. A stroke of good fortune prevented the hackers from obtaining operational control of the flood gates because the dam had been manually disconnected for routine maintenance, she said.
The Bowman hack was a “game-changing event” for the U.S. government that prompted investigators to uncover other systems vulnerable to similar attacks, said Andre McGregor, a former FBI agent and a lead case investigator on the dam intrusion.
“The investigation’s discovery of many more exposed computer systems with vulnerable management consoles is a constant reminder that basic cyber hygiene remains at the forefront of the battle against cyber attacks,” said McGregor, now director of security at Tanium, a Silicon Valley cyber security firm.
“We must step up our counter-hacking game ASAP to deal with threats from places like Iran and would be terrorists,” said New York Senator Chuck Schumer in a statement.
Cyber security experts and U.S. intelligence officials have grown more alarmed in recent months by the possibility of destructive hacks of critical infrastructure such as dams, power plants and factories. Some have said a December cyber attack on the Ukraine’s energy grid that caused a temporary blackout of 225,000 should serve as a wake-up call.
The defendants were identified as Ahmad Fathi, Hamid Firoozi, Amin Shokohi, Sadegh Ahmadzadegan, Omid Ghaffarinia, Sina Keissar and Nader Seidi, all citizens and residents of Iran. They are accused of conspiracy to commit computer hacking while employed by two Iran-based computer companies, ITSecTeam and Mersad Company.
Firoozi also is charged with obtaining and abetting unauthorized access to a protected computer.
The indictments are the latest attempt by the Obama administration to more publicly confront cyber attacks carried out by other countries against the United States.
The campaign began two years ago when the Justice Department accused five members of China’s People’s Liberation Army with hacking several Pennsylvania-based companies in an alleged effort to steal trade secrets. It continued with President Obama’s vow to “respond proportionally” against North Korea for the destructive hack against Sony Pictures.
“An important part of our cyber security practice is to identify the actors and to attribute them publicly when we can,” Lynch said Thursday. “We do this so that they know they cannot hide.”
U.S. officials largely completed the investigation more than a year ago, according to two sources familiar with the matter, but held off releasing the indictment so as to not jeopardize the landmark 2015 nuclear deal with Iran or a January prisoner swap.
Even though Iran is not expected to extradite the suspects, FBI Director James Comey vowed to pursue justice.
“The world is small and our memory is long,” he said at the news conference with Lynch.
Dmitri Alperovitch, chief technology officer with cyber security firm CrowdStrike, said, “This sends an important message to Iran and other governments that these people cannot operate anonymously.”
The U.S. and Israel launched a cyber attack against Iran in 2010, now famously known as the Stuxnet worm, in order to disable Iran’s nuclear centrifuges. Some security researchers and officials have long suspected the attacks against U.S. banks and the dam were done in part as retaliation.
Separately, the U.S. Treasury Department blacklisted two Iranian companies on Thursday for supporting Iran’s ballistic missile program and also sanctioned two British businessmen it said were helping an airline used by Iran’s Revolutionary Guards.
Internet blown away by Giuliani’s ‘pants-sh*tting panic’ freak out on CNN’s Cuomo
Former New York City Mayor Rudy Giuliani received harsh reviews of his Thursday evening appearance on CNN with anchor Chris Cuomo.
Many people worried about Giuliani's mental health after watching the interview.
Here is some of what people were saying about Trump's defense attorney.
Maddow is visibly shocked Trump is claiming in court the president can’t even be investigated
The host of "The Rachel Maddow Show" on MSNBC was flabbergasted by the latest court moves by President Donald Trump as he continues to hide his tax returns from investigators.
The host noted the ongoing legal battle Trump is waging to keep his accounting firm, Mazars, from handing over eight years of his tax returns to New York state investigators.
The host was shocked by the headline on the front-page of The Washington Post website.
[caption id="attachment_1544917" align="aligncenter" width="640"] Headline in The New York Times: "Trump Lawyers Argue He Cannot Be Criminally Investigated" screengrab.[/caption]
WATCH: GOP congressman hides in an elevator as veterans try to confront him about his support for Trump
On Thursday, Common Defense, an activist group of combat veterans, followed Rep. Dan Crenshaw (R-TX) through a hallway and demanded to know why he isn't doing something about President Donald Trump's lawless conduct.
Crenshaw — himself a former Navy SEAL — tried to shoo them away, and eventually ducked into an elevator to get away from them.
"How can you let a criminal like Donald Trump run roughshod over our democracy and shred everything that you and I fought for?" demanded one of the protesters on a video uploaded by the group. "Like c'mon man. Like how can you just sit there idly by and not do your duty? We need your leadership right now. You cannot be complicit in this man's crimes. It is immoral. It's laid out clearly in the Mueller report."