The Israel-Iran conflict extends in the digital field while Nobitex, the largest Iranian cryptocurrency exchange, underwent a security incident on Thursday morning. This recent cyber attack was claimed by the group linked to Israel, Gonjeshke Darande (“Sparrow predator” in Persian), and Nobitex currently estimates that the total value of stolen assets is around 100 million dollars, he said in A post X.
This feat follows an attack on one of the largest financial institutions in Iran, Sepah Bank on June 17, where the group claims to have destroyed all the data from the bank. The story of Gonjeshke Darande of sophisticated cyber-operations against Iranian entities, in particular those close to the regime or involved in the bypass of Western sanctions, dates back to 2022.
Destruction of the infrastructure of the body of the Islamic Revolutionary Guard “Banque Sepah”
We, “Gonjeshke Darande”, have led cyber attacks that destroyed data from the “bank” of the Islamic revolutionary body.“Bank Sepah” was an institution that bypassed … pic.twitter.com/1r4xydmxcj
– Gonjeshke Darande (@gonjeshkedarand) June 17, 2025
According to a blog By elliptical, the attack does not seem to have been financial motivated, since the stolen funds have been transferred to a certain number of “vanity addresses containing a certain variation of the term” F * CKIRGCTERRISTS “in their public key”, and that the generation of “addresses with text lines as long as those used in this hacking is in calculation,” suggesting that the attackers probably do not know that private are not in calculation.
Vanity Crypto Wallet Wallet addresses are generally created by continuously generating random private keys and their associated public keys and addresses until the desired alphanumeric motif is corresponded.
Ironically, the internal breakdown and the telephone imposed by the State in Iran to guard against the Israeli cyber attacks has further complicated the question.
Despite the substantial loss, Nobitex assured its users that their funds are secured due to an internal reserve fund and asked for patience when working to restore access to user support services.
Nobitex ad n ° 4 – concerning the security incident
As part of Nobitex’s continuous response to the recent security incident, we want to inform our users that the situation is now maternal. All the external access to our servers has been completely cut.
If you …
– NOBITEX | نوبی rout (@nobitexmarket) June 18, 2025
Yesterday, the attackers published Nobitex Full source code on xUndressing the exchange to publish another article stressing that the “dimensions and effects of the attack were more complex than initially expected” and that their CEO will soon be aimed at users by video message.
اطلاعیه شماره ۵
بهروزر ib.یک روز پس از وقوع حادثه ، شما کاربران عی را در جریان آخرین وضعی <و تصمیهای follow
برسیهای انجامشده نشان می way وارد شده…– NOBITEX | نوبی rout (@nobitexmarket) June 19, 2025
