A threat actor has allegedly breached the official website of the Iranian government, iran[.]gov[.]ir, and is offering a database containing sensitive information for sale. The targeted website serves as the main portal for the government of Iran, making it a critical piece of national digital infrastructure. A successful breach of this magnitude could expose personal details of both government officials and private citizens, posing a significant national security risk.
The threat actor claims the compromised database contains a wealth of personally identifiable information (PII). The data is being advertised on a dark web forum and is said to include details on high-ranking government officials as well as the general populace. The seller has listed the price for the entire database at $2,000 USDT.
According to the forum post, the following data types are included in the breach:
- Name
- Surname
- Father’s Name
- Phone Number
- Address
