Iranian hackers blamed for Los Angeles transit system breach
Original: Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover
Why This Matters
Shows escalation of Iranian state-sponsored cyberattacks on U.S. critical infrastructure
Security researchers attribute March breach of Los Angeles County Metropolitan Transportation Authority to Iranian-backed hackers from Ministry of Intelligence. Group called Ababil of Minab claimed responsibility for attack that took weeks to recover from, stealing and deleting transit system data.
Israeli cybersecurity firm Gambit Security identified Iranian government hackers behind a March cyberattack on Los Angeles County Metropolitan Transportation Authority (LACMTA). The hacktivist group Ababil of Minab, named after a U.S. airstrike on Iranian school in Minab that killed 175+ people, claimed responsibility for stealing and deleting transit system data. Gambit's forensic analysis ties the group to Iran's Ministry of Intelligence and State Security (MOIS), contradicting claims of being independent hacktivists. The assessment suggests Ababil of Minab follows pattern of fake hacktivist groups working for Iranian government, similar to Handala group that recently attacked medical tech company Stryker. Iranian-linked cyber activities have increased following U.S. and Israeli military actions against Iran this year.