Two Iranian hackers charged in US ransomware scheme

November 28, 2018 by Michael Balsamo
2 Iranian hackers charged in US ransomware scheme
Deputy Attorney General Rod Rosenstein speaks during a news conference announcing the indictment against international computer hacking, at Department of Justice in Washington, Wednesday, Nov. 28, 2018. The Justice Department says two Iranian computer hackers have been charged in connection with multimillion-dollar cybercrime and extortion scheme that targeted U.S. government agencies and businesses. (AP Photo/Jose Luis Magana)

Two Iranian computer hackers were charged Wednesday in connection with a multimillion-dollar cybercrime and extortion scheme that targeted government agencies, cities and businesses, the Justice Department said.

Faramarz Shahi Savandi, 34, and Mohammad Mehdi Shah Mansouri, 27, are accused of creating ransomware known as SamSam that encrypted data on the computers of more than 200 victims, including the cities of Atlanta and Newark, New Jersey.

Starting in January 2016, the hackers were able to exploit cyber weaknesses, gain access to the victims' computers and install the ransomware remotely, prosecutors said. The hackers would then allegedly encrypt the files on the computers and demand that the victims pay a ransom in bitcoin in order to have their data unlocked.

The hackers, who are not believed to be connected to the Iranian government, were able to make about $6 million and caused the victims of the scheme to lose more than $30 million, prosecutors said.

Other victims included the Colorado Department of Transportation, the Port of San Diego and six health care companies across the U.S., according to the Justice Department.

"SamSam ransomware is a dangerous escalation of cybercrime," said Craig Carpenito, the U.S. attorney for New Jersey, where Wednesday's indictment was unsealed. "This is a new type of cybercriminal. Money is not their sole objective. They are seeking to harm our institutions and our critical infrastructure."

2 Iranian hackers charged in US ransomware scheme
Deputy Attorney General Rod Rosenstein speaks during a news conference announcing the indictment against international computer hackers, at the Department of Justice in Washington, Wednesday, Nov. 28, 2018. The Justice Department says two Iranian computer hackers have been charged in connection with multimillion-dollar cybercrime and extortion scheme that targeted U.S. government agencies and businesses. (AP Photo/Jose Luis Magana)

The Justice Department would not say whether any of the municipalities paid the ransom. The Atlanta Journal-Constitution reported in April that Atlanta entered into emergency contracts worth $2.7 million to help restore the city's network after the attack.

The hacking scheme was sophisticated not only because it targeted but because the hackers targeted the entities after business hours and used European-based servers to launch the remote attacks, Carpenito said.

The two men remained fugitives and were believed to be in Iran. Although the U.S. does not have an with Iran, the Justice Department expressed some confidence that the men may one day face the inside of a U.S. courtroom.

"American justice has a long arm and we will wait and eventually we're confident that we will take these perpetrators into custody," Deputy Attorney General Rod Rosentein said.

2 Iranian hackers charged in US ransomware scheme
Deputy Attorney General Rod Rosenstein speaks during a news conference announcing the indictment against international computer hackers, at the Department of Justice in Washington, Wednesday, Nov. 28, 2018. The Justice Department says two Iranian computer hackers have been charged in connection with multimillion-dollar cybercrime and extortion scheme that targeted U.S. government agencies and businesses. (AP Photo/Jose Luis Magana)

Explore further: Hackers demanding bitcoin ransom attack Atlanta city computers

Related Stories

US disrupts hacking schemes that stole millions

June 2, 2014

A band of hackers implanted viruses on hundreds of thousands of computers around the world, secretly seized customer bank information and stole more than $100 million from businesses and consumers, the Justice Department ...

Why ransomware is on the rise

February 25, 2016

A California hospital recently had its patients' records held hostage. But the perpetrators did not commandeer a room full of paper files. They were in fact hackers who restricted access to the electronic records and demanded ...

Five ways to become a smaller target for ransomware hackers

April 5, 2016

Hacking for ransom is on the rise—on pace to beat out last year's figures—and hits people where it hurts, locking them out of files, photos and critical records until they pay hackers a bounty to restore their access. ...

Recommended for you

When a defect might be beneficial

February 19, 2019

In the quest to design more efficient solar cells and light-emitting diodes (LEDs), a team of engineers has analyzed different types of defects in the semiconductor material that enables such devices to determine if and how ...

0 comments

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.