• Cyber Security
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware File Recovery
    • Ransomware Types
  • Ransomware Services
    • Ransomware Removal
    • Ransomware File Recovery
  • News
  • Tutorials
  • Ransomware TV

Two Iranians Have Been Indicted for the Atlanta Ransomware Attack

December 6, 2018Simeon Georgiev

The US Attorney’s Office for the District of Northern Georgia has made the latest announcement on the Atlanta ransomware attack. A federal grand jury indicted two individuals who have been found out to be Iranians. Both of them have been charged with masterminding and carrying out the ransomware attacked that ravaged through Atlanta’s systems in March 201 for about a week.

The perpetrators—Mohammed Mehdi Shah Mansouri and Faramarz Shahi Savandi face legal proceedings for using the highly infamous SamSam Ransomware. They face accusations for infecting almost 4,000 workstations and servers which belonged to the City of Atlanta as well as for their extortion attempts.

According to a spokesperson from the Justice Department, Mansouri (Qom, Iran) and Savandi (Shiraz Iran) face charges of “intentional damage to protected computers… that caused losses exceeding $5,000, affected more than 10 protected computers, and that threatened the public health and safety,” which fall into the category of the Computer Fraud and Abuse Act (CFAA).

Interestingly, this is a not something which is new for the Iranian-based hackers. Earlier, they were charged in a separate case by the US District Court of New Jersey for their link to a different ransomware campaign in which they are reported to be successful in getting the ransom.

The Atlanta attack is not declared to be a state-sponsored one. It is believed that the cybercriminals targeted the city’s systems after finding a vulnerability in its security. The indictment explained that the hackers demanded a ransom of 6 Bitcoins in return for keys that could facilitate the City officials with ransomware removal. Additionally, to decrypt single servers for ransomware removal, a demand of 0.8 Bitcoin was also forwarded by the hackers. However, in the end, the City of Atlanta did not bow down to their demands and decided against paying any money.

Simeon Georgiev
https://www.linkedin.com/in/simeon--georgiev/
I am a Cyber Security Enthusiast from Bulgaria. I like to write about malware and ransomware and global cyber attacks. You can reach me on Twitter @sgeorgiev1995 or Email: [email protected]
Previous post Strack and Van Til Breached Next post Victims of Ransomware Charged by Russian Scammers

Related Articles

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

January 27, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Ransomware: 4 Types of the Latest Trend in Cybercrimes

February 1, 2018Simeon Georgiev
Ransomware: 4 Types of the Latest Trend in Cybercrimes

NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

February 1, 2018Simeon Georgiev
NonPetya Ransomware Caused Millions of Dollars Worth of Damage to Maersk

Latest on Ransomware TV

https://vimeo.com/399908876?loop=0

Recent Posts

  • How to protect your organization against ransomware reinfections
  • AuKill Helps Ransomware Operators Disable EDR and Security Tools
  • AI-ransomware is a real threat, just not a realistic one yet
  • Rorschach is the new speed king in the ransomware space
  • The Role of Supply Chain Breaches in Ransomware Attacks

Stay Protected

Subscribe to our mailing list to get the latest cyber security and ransomware removal articles!

Thank you for subscribing.

Something went wrong.

Navigation

  • Cyber Security
    • Ransomware File Recovery
    • Ransomware Prevention
    • Ransomware Removal
    • Ransomware Types
  • News
  • Tutorials

Ransomware Attacks (Last 6M)

0

Connect & Protect

Facebook
Google+
LinkedIn
YouTube
Vimeo

More

  • BECOME A CONTRIBUTOR

MonsterCloud Reviews

© 2020 MonsterCloud.com. All Rights Reserved.