Connect with us

Cybersecurity & Privacy

Iran Engulfed in ‘Digital Fog’ as Cyber Assault Paralyzes Communications

Published

on

Amid escalating military tensions in West Asia, Iran is experiencing a massive cyber offensive that has crippled its digital infrastructure. Alongside reported missile strikes and aerial bombardments by the United States and Israel, the country is now facing what experts call a “digital fog,” severely limiting online communication and access to essential services.

Internet Blackouts and Disrupted Services

For over 72 hours, internet access across Iran has been sporadic or completely inaccessible. Government websites, banking platforms, and widely used applications have experienced repeated outages, leaving citizens unable to access critical services. Network analysts report sharp declines in both inbound and outbound traffic, with major portals and mobile apps intermittently shutting down.

State-run networks, key data centers, and communication systems appear to have been targeted in rapid succession. The timing of the attacks coincides with intensified military operations beginning February 28, suggesting a coordinated effort to destabilize both physical and digital infrastructure simultaneously.

Religious App Breach Sparks Alarm

Among the most notable cyber incidents was the reported hacking of “Bade Saba,” a popular religious calendar app with over five million users, including government employees. Users reportedly saw messages urging “accountability” and instructing individuals to lay down arms, sparking widespread concern. While services were partially restored, officials have yet to disclose the full extent of data exposure or system infiltration.

Cybersecurity experts warn that such targeted intrusions could compromise sensitive personal and institutional data, raising broader questions about digital security in times of conflict.

Understanding the “Digital Fog”

The term “digital fog” describes a situation where large-scale cyber disruptions prevent a population from using online services normally. Similar to physical fog, it obstructs visibility—in this case, digital connectivity. Websites fail to load, messaging platforms become unreliable, online banking is delayed or blocked, and access to public information is severely limited.

Experts note that even when connectivity is not fully cut off, throttled internet speeds can render services nearly unusable, effectively paralyzing a nation’s online ecosystem.

Military and Cyber Coordination

Reports indicate that the cyber attacks are part of a synchronized strategy alongside U.S. and Israeli military operations. By targeting both Iran’s physical infrastructure and its digital networks, analysts say the campaign is designed to maximize disruption while limiting direct ground confrontation.

Official statements from affected authorities describe the outages as technical failures, but independent cybersecurity analysts point to patterns consistent with deliberate, external interference.

Civilian and Economic Impact

The blackout has caused severe disruption to daily life. Online transactions, e-commerce platforms, educational tools, and communication services remain unreliable. Businesses report delays, while families struggle to maintain contact amid ongoing messaging failures.

The unfolding situation highlights the growing role of cyber operations in modern warfare, demonstrating how digital attacks can destabilize a country’s internal systems without requiring conventional military engagement.

As of now, no timeline has been provided for the full restoration of Iran’s internet services. Citizens continue to operate under the cloud of this unprecedented digital disruption, with both economic and social systems heavily affected.

Continue Reading
Advertisement
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Cybersecurity

AI-Powered Cyber Threats Put India’s Financial Sector Under Growing Pressure, Report Warns

Published

on

By

New security assessment highlights deepfakes, identity attacks, supply-chain risks and weaknesses beyond traditional compliance systems

India’s banking, financial services and insurance (BFSI) sector is facing a rapidly changing cyber threat environment as attackers increasingly use artificial intelligence, deepfake technology, identity manipulation and advanced digital techniques to target financial systems.

A new Digital Threat Report 2025-26 developed by SISA, CERT-In and CSIRT-Fin warns that cyber risks are evolving faster than many organisations can strengthen their defences. The report highlights that modern attacks are no longer limited to stealing information but are increasingly focused on disrupting transactions, compromising trust and exploiting digital infrastructure.

The assessment notes that several cyber trends predicted in the previous edition of the report have already become widespread, showing that the time between emerging threats and real-world attacks is becoming significantly shorter.

Deepfakes and AI Increase Sophistication of Financial Fraud

Artificial intelligence has become a major factor behind the growth of sophisticated cyber fraud campaigns. The report identifies AI-driven impersonation, deepfake videos, automated phishing and advanced social engineering as key challenges for financial institutions.

Criminal groups are increasingly using realistic fake identities, manipulated communications and AI-generated content to deceive employees and customers. Traditional verification methods based only on visual or voice recognition are becoming less reliable as attackers improve their ability to imitate trusted individuals.

The report also highlights rising risks from business email compromise, credential theft and session hijacking. Attackers are using stolen access details and legitimate user sessions to bypass security measures instead of directly breaking authentication systems.

Cyber incidents affecting India’s BFSI sector are estimated to be significantly higher than the global average, with reported incidents increasing substantially in recent years. The report stresses that organisations must focus on analysing user behaviour, device activity and transaction patterns rather than relying only on passwords or authentication checks.

Identity Protection Becomes a Critical Security Challenge

Cybercriminals are increasingly targeting digital identities after successful login attempts. The report warns that attackers are focusing on session tokens, application programming interface (API) keys, service accounts and cloud-based permissions.

In these situations, security systems may not detect a traditional authentication failure because attackers are operating through valid sessions or stolen credentials. Financial institutions are therefore being urged to strengthen identity monitoring and continuously review access privileges.

The report recommends improved management of non-human identities, stronger credential protection and better visibility into digital activity across applications and cloud environments.

Compliance Alone Cannot Guarantee Cyber Resilience

The report highlights a growing gap between meeting regulatory requirements and achieving real-world cybersecurity readiness.

While compliance frameworks help organisations establish security standards, they may not always reveal weaknesses that appear during active attacks. The report identifies issues such as outdated security practices, incomplete monitoring and gaps between designed controls and their actual operation.

For example, encryption may protect stored information but may not secure data while it is being processed. Multi-factor authentication can confirm identity but may not stop attackers who have already gained access through stolen sessions.

The report advises financial organisations to treat compliance as a starting point rather than a complete security solution. Continuous testing, threat simulations, behavioural monitoring and regular security reviews are recommended to strengthen resilience.

Business Logic Attacks and Hidden Threats Expand Risk

Modern attackers are increasingly exploiting weaknesses in how financial systems operate rather than simply attacking technical vulnerabilities.

The report warns that payment systems, transaction limits and verification workflows can be manipulated through unusual sequences of legitimate actions. Attackers may abuse authorised functions in ways that developers never intended, making such activities difficult to detect.

It also highlights threats from fileless malware, encrypted communication channels and incomplete monitoring systems. These techniques can allow attackers to remain hidden while moving through networks or extracting sensitive information.

Report Calls for Continuous Cyber Defence Strategy

The assessment outlines several major security challenges expected to shape the future threat landscape, including AI-powered fraud, identity compromise, payment manipulation, supply-chain attacks and risks affecting critical financial infrastructure.

To address these challenges, the report recommends an 18-month security improvement roadmap focused on strengthening basic protections, expanding monitoring capabilities and redesigning security architecture.

The report concludes that cybersecurity must become an ongoing business priority for financial organisations. In an environment where cyberattacks can scale rapidly through automation and AI, periodic security checks are no longer enough. Continuous protection, testing and adaptation will be essential to maintaining trust and stability in the financial sector.

Continue Reading

Cybersecurity

Dell BIOS Flaw Lets Hackers Recover Admin Passwords Within Seconds

Published

on

By

Firmware vulnerability allows rapid password recovery on affected Dell devices, raising concerns over enterprise hardware security

A newly disclosed security vulnerability in the BIOS firmware of several Dell devices could allow attackers to recover administrator and user BIOS passwords within seconds, according to cybersecurity researchers.

The flaw, identified as CVE-2026-40639 and documented in Dell’s security advisory DSA-2026-197, is linked to an insecure password storage method inside certain firmware components. Rather than exploiting weak passwords, attackers can take advantage of how BIOS credentials are encrypted and stored.

Although exploitation generally requires physical access to the affected device or low-level system access, successful attacks could bypass important firmware security protections that help secure the boot process.

Faulty Encryption Method Exposed BIOS Credentials

Researchers found that some Dell systems stored BIOS passwords using a weak repeating-key XOR encryption method instead of a stronger cryptographic protection mechanism.

The affected passwords are stored in the Dell Variable (DVAR) section of the SPI flash memory, where firmware settings are maintained. According to researchers, weaknesses in the encryption design allow sensitive key information to be recovered from stored password data.

The problem is particularly serious for shorter passwords because unused storage space in the encrypted password field can reveal portions of the encryption key. This enables attackers to recover passwords directly instead of attempting traditional password-cracking methods.

Even longer passwords may remain vulnerable because the system’s key-generation process relies on limited device-specific information, reducing the complexity required for recovery.

Researchers Identify Affected Dell Platforms

The vulnerability was discovered by security researchers Craig S. Blackie of MDSec and Darren McDonald of AmberWolf during an investigation into Dell UEFI firmware.

Their analysis identified issues in the SystemPwSmm firmware component, which is used across multiple Dell client systems. Testing confirmed exposure on devices including:

  • Dell Latitude E7250
  • Dell Latitude 7490
  • Dell XPS 15 9560
  • Dell Wyse 5070 thin client

Researchers noted that newer Dell platforms using the Security Information Vault Block design with SHA-256-based protection were not affected during testing.

The difference highlights that Dell has already implemented stronger firmware security methods on newer hardware, although some older systems remain dependent on the vulnerable design.

Attack Requires Access, But Impact Could Be Significant

The vulnerability is not considered a remote attack because hackers typically need physical access to a device or the ability to obtain a firmware image from the system.

However, once attackers gain access, recovering BIOS passwords can reportedly be performed without user interaction or authentication. This creates risks for corporate laptops, shared devices and systems used in environments where physical security cannot always be guaranteed.

BIOS passwords often protect settings related to Secure Boot, boot order changes and other pre-operating system controls. If compromised, attackers could potentially weaken security protections or interfere with systems protected by disk encryption technologies.

Security experts warn that firmware-level weaknesses are particularly dangerous because they operate beneath the operating system and can affect multiple layers of device security.

Dell Releases Updates and Advises Security Measures

The vulnerability was privately reported to Dell in March 2026. After reviewing the findings, Dell published its security advisory and began releasing firmware updates for affected product lines.

Initial updates covered several platforms, including Precision systems, Rugged Latitude devices, Embedded PCs and Edge Gateway products. Additional fixes for other affected models were expected as part of Dell’s broader remediation effort.

Continue Reading

Cyber & Financial Fraud

Maldives Consul Hit By Credit Card Fraud During Flight, Authorities Examine Possible Data Breach Or Insider Role

Published

on

By

The Maldives Consulate is investigating a credit card fraud incident involving one of its officials while in transit, authorities confirmed on March 28, 2026. The case has prompted inquiries into whether the breach stemmed from a data leak or involved internal complicity.

The incident reportedly occurred during a flight, when the consul’s payment details were allegedly compromised. Officials have not yet disclosed the exact method of the fraud but are examining all potential vectors, including unauthorized access to travel-related systems or insider involvement.

Local and international law enforcement agencies are collaborating with the Maldives Ministry of Foreign Affairs and relevant banking institutions to determine the scope of the breach and mitigate potential financial damage. “We are conducting a thorough investigation to ensure accountability and prevent future incidents,” a spokesperson said.

Experts warn that such in-flight frauds, while rare, can exploit vulnerabilities in wireless payment systems, mobile banking apps, or compromised devices. Travel security protocols are being reviewed across diplomatic missions to strengthen protections against similar threats.

No arrests have been made, and the investigation is ongoing. Authorities have advised travelers and officials to remain vigilant about unusual activity on financial accounts and report any suspicious transactions immediately.

Continue Reading

Trending

Copyright © 2022 420 Reports Marijuana News & Information Website | Reefer News | Cannabis News