An anti-Iran group that targeted state-run Bank Sepah the day before the attack is now threatening to leak the source code for Nobitex, describing the platform as a terrorist financing tool used to circumvent sanctions.
Key points:
1. Nubitex Hack: The Iranian cryptocurrency exchange Nubitex was hacked, resulting in the theft of $90 million. The group, Jongeshke Darandeh (also known as the Bird of Prey), claimed responsibility for the attack. This group is believed to be linked to Israel and describes itself as an anti-Iranian cyber activist.
2. Additional threats: The group warned that it would leak internal data and the source code of Nobitex within 24 hours, putting the remaining assets on the platform at risk. It also accused the platform of aiding the Iranian regime and evading international sanctions.
3. Nobitex's response: Nobitex confirmed the hack but did not specify the value of the stolen assets. It stated that funds stored in cold (offline) wallets were safe, while some hot (online) wallets were affected. The platform promised to compensate for losses through an insurance fund and its own resources.
4. Geopolitical context: The attack came amid escalating tensions between Israel and Iran, with recent days witnessing an exchange of missile strikes and cyberattacks. The same group also targeted Iran's Bank Sepah the day before the Nobitex hack.
5. Nature of the attack: Unlike traditional financial hacks, the target appears to have been political rather than financial, as the stolen funds were transferred to unrecoverable addresses (known as “burn addresses”), making them unusable.
Conclusion:
The attack on Nobitex represents an escalation in the cyber war between Israel and Iran, with a clear focus on weakening Iran's financial infrastructure. While Nobitex assures compensation to those affected, the threat of data leaks remains a concern for users and the platform alike.