US and British intelligence agencies have revealed that a Russian hacker group hacked an Iranian hacker group and spied dozens of countries using its identity.
The systems of this Iranian hacker group called the Oil Rug were attacked by the Russian hacker group Tarla and then used these systems to target other countries.
The double imports were revealed as a result of a UK National Cyber Security Center (NCSC) investigation that began in 2017, following a cyber attack on a British educational institution.
British security officials say that Tarla targeted more than 35 countries over the past 18 months using Iranian systems, during which the systems of at least 20 countries were successfully hacked.
The purpose of these operations was to steal confidential information and steal documents from a large number of target systems, including governments.
Authorities say the hacking campaign was the most active in the Middle East, but it has also targeted British institutions.
Intelligence agencies say that Tarla not only received stolen information from Iranian hacking gangs, but also carried out hacking operations using Iranian systems to conceal his true identity.
The victims may have felt that they had been targeted by an Iranian hacker group while in fact the Russian group was behind the operation.
There is no evidence that Iran knew or was involved in the use of its systems by the Russians, or that the action was intended to increase tensions between different countries, but in this case the cyber world Is estimated by the increasing complexity.
According to Paul Chichester, director of the NCSC, he had not seen such a well-executed cyber attack before.
He said the purpose of releasing those details was to help others detect and defend themselves in these activities.
“We want to give a clear message that hackers can hide their identities, but our capabilities are against them and we can identify them.”
The NCSC has avoided linking the attacks directly to the states of Iran and Russia, but other Torala agencies say it is linked to the Russian intelligence agency FSB and the oil rig to the Iranian state.
Documents released by former US intelligence official Edward Snowden and report by German magazine Der Spiegel suggest that the United States and its western allies have also used foreign cyber attacks in the past for their espionage operations.
Britain’s Government Communications Headquarters (GCHQ) declined to comment on Western operations.
British officials say that Tralla’s actions assess the dangers of blaming someone else for a cyber-attack, but he said he was unaware of any public event in which Russian authorities were responsible for wrongdoing. But Iran has been declared.