Saturday, September 26, 09:14
Home security USA: Two hackers are accused of defacement on sites after the murder of ...

USA: Two hackers are accused of defacement on sites after the murder of Soleimani

Two hackers have been charged by the US Department of Justice (DoJ) with orchestrating a mass defacement campaign against US sites. This is a campaign launched after the assassination of Iranian soldier Qasem Soleimani by US forces in early January. According to the indictment, the two hackers behind the campaign are 19-year-old Iranian Behzad Mohammadzadeh, also known as Mrb3hz4d, and 25-year-old Palestinian Marwan Abusrour, also known as Mrwn007.

hackers-defacement sites vs USA

Mohammadzadeh had given an exclusive interview to SECNEWS last March, following an ALERT issued by the FBI at the time..

The FBI said in a statement that it had observed a series of violations on sites by Iranian hackers. He also stressed that many of these violations may have been the result of exploiting known vulnerabilities in Content Management Systems (CMSS) to upload defacement files. So the FBI then advised users, businesses and organizations to be aware of the techniques, tactics and indicators provided in their ALERT, as they were very likely to be targeted by Iranian hackers.

Mohammadzadeh has violated, among other things, the site of the National Transparency Authority ( which belongs to SYZEFXIS. So, the SecNews team contacted him to learn more about the hacker, his goals, the attacks on Greek sites, his opinion on the online level security of Europeans and others.

Now Mohammadzadeh, who is considered the main perpetrator of the attacks, was accused of invading more than 50 US sites and then posting pictures of the late Soleimani, as well as messages such as "Down with America".

Soleimani defacement

The violations affected for the most part domains hosted on Jan. 3, a day after U.S. officials announced the assassination of Soleimani, following attack received from an aircraft in his car, near Baghdad International Airport.

According to the indictment, after this announcement, Mohammadzadeh started the wide hacking campaign. In addition, while the DoJ accused Mohammadzadeh of violating about 51 sites, U.S. officials say a profile on Zone-H (site where hackers post details of their violations and brag about their accomplishments) lists more than 1.100 sites that have been violated by Iranian hackers, with 400 of them showing pro-Soleimani messages.

defacement sites list

Abusrour, on the other hand, has been accused of playing a lesser role in the campaign. Prosecutors say the young Palestinian provided Mohammadzadeh access on seven sites, which his Iranian counterpart later distorted as part of his campaign.

However, U.S. officials said Abusrour also had a history of defacement against sites, with the hacker monicker being on more than 337 sites that have been tampered with in favor of Palestinians dating back to June 2016.

Hackers vs USA

The violations committed by the two hackers were strongly commented by the media. However, the coverage of the news was slightly excessive, with some news agencies presenting these violations in response to the Iranian government in the context of an upcoming "nuclear cyber war". This, however, does not correspond to reality. The most popular sites that were violated by Mohammadzadeh were portal of the US Federal Depository Library Program, which was almost immediately shut down and restored after defacement.

According to the DoJ, if the two hackers are found guilty, they could face up to 10 years in prison, as well as fines of up to $ 250.000. It is worth noting, however, that for now the two hackers remain free.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.



Ring: Amazon's new device is a drone with a security camera

Amazon is ready to launch a new Ring security camera mounted on top of a flying drone.

Software developers were very productive during the pandemic

The productivity of most software development teams increased during the Covid-19 pandemic crisis, according to a new study. But if you are ...

Cisco: 25 Serious Defects in IOS and IOS XE Software

Cisco has warned customers using IOS and ISO XE software to apply updates for 25 high-security vulnerabilities ...

The new Microsoft Edge feature will reduce memory and CPU usage

To improve memory and CPU usage on the Edge, Microsoft is developing a new feature called "Sleeping Tabs".

Microsoft: Removed 18 Azure AD apps controlled by Chinese hackers

Microsoft announced yesterday that it has removed 18 Azure Active Directory apps from the Azure portal, which were developed and used maliciously by ...

Possible penalties for CEOs of Google, Facebook, and Twitter

The Senate Commerce Committee asked the CEOs of Google, Facebook and Twitter to testify on October 1.

The National Bank of Australia pays you to hack into its systems

The National Bank of Australia (NAB) has launched a bug bounty program, offering money to security researchers who will reveal unknown vulnerabilities ...

Error in iOS 14 fixed by Apple

An annoying error, which restores the default applications after restarting the device in the new iOS 14 (14.0.1), has been fixed ...

Microsoft Stream Users: Get ready for migration (again)

At the Ignite 2020 IT Pro conference this week, Microsoft representatives announced the company's plans for the reconstruction of ...

LinkedIn Stories: The new feature is coming soon!

LinkedIn is the latest networking platform that incorporates the new feature of Disappearing Stories. The professional networking site ...