Did an anonymous Israeli hacker reveal the Pay2Key attack group with ties to Iran? In a series of tweets, the man claims that “the clock is ticking” for 5 people who helped the Iranian group and publishes their alleged photos.
From @EmbeddedOle’s Twitter page
The Iranian hacker group Pay2Key continues to make a name for itself in Israel, and after last week it presented information that it managed to encrypt and steal from the Israeli bana labs, which was acquired by Intel, yesterday the group presented information from IAI computers. However, it is not certain that the anonymous group will remain so for long.
“The clock is ticking for those who helped Pay2Key”
An unknown source, who is behind the Twitter account 0x972DC (or @EmbeddedOle), claims that his goal is to expose the Iranian attack group that has been attacking Israeli bodies recently. A photo he posted last night (Sunday) shows five men whose eye area has been blackened next to the caption (originally in English): “The clock is ticking for those who helped Pay2Key.”
In another tweet from yesterday, the Israeli hacker wrote: “Do not think that Pay2Key are professionals or talented, they used the vulnerability of zerologon (or CVE-2020-1472) to gain access to IAI’s DC server – not impressive. Just like hyenas, they use public loopholes to achieve the easiest. Their time is running out. “
Last week, the hacker wrote in Hebrew that he planned to expose the group, but promised that he would do so within two days – which has not yet happened. The anonymous hacker also added that although the group is linked to Iran, it is not acting out of national motives but mainly greed money. He further claimed that the group deliberately chose its logo to try and incriminate the Iranian-American developer Sam Kazmian – who founded Everipedia.
All the Israeli companies that Pay2Key allegedly hacked into their servers | Screenshot: Gictic
However, it is important to emphasize that as of this moment, there is still no basis for the claims of the anonymous source behind this nickname. However, a source in the information security industry with whom we spoke, noted that the person behind this account appears to be knowledgeable in the field.
“Still think they have the most secure network?”
Yesterday, the Iranian group’s Twitter account boasted that they had hacked into IAI computers and another new logo for the group’s website in Darknet, which includes the Bana Labs, infiapps, Inter Industries and an Israeli law firm.
The group’s website states that they broke into the website of Elta, a subsidiary of IAI, and uploaded a txt file to their website with the information of all users of Elta’s domain, the groups they joined, information about their folders and more.
“The most interesting part was the access to the file servers, which are filled with technical documents, videos, designs, research and projects – and we have them? Who knows, ”members of the hacker group wrote about the hack into the Elta site. Last week, the group conducted a survey in which it was asked which Israeli body the most secure network was, with IAI winning the most votes. Following the publication of the alleged intrusion, the hackers wrote: “Do you still think they have the most secure network?”.
Oshri Alexelsi
Your Friendly Neighborhood Geek. Do you have a technological story? Talk to me: [email protected]
