IRLeaksIRLeaks

Also known as: IRLeaks

Known aliases
1

Profile

IRLeaks is a threat actor known for significant cyberattacks targeting Iranian organizations, including a major breach of SnappFood, where they exfiltrated 3TB of sensitive data from 20 million user profiles. They have also compromised data from 23 leading Iranian insurance companies, offering over 160 million records for sale. Their operations involve extortion tactics, as seen in the ransom negotiations with Tosan, and they utilize malware such as StealC for data extraction. IRLeaks communicates primarily in Persian and has been active in selling stolen data on cybercriminal marketplaces.

Aliases· 1

IRLeaks

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Actor
Cyber Toufan
Actor
APTIran
Actor
Cyber Islamic Resistance
Actor
IntelBroker
Actor
GhostR
Actor
BreachLaboratory
Sourced from MISP-Galaxy Threat Actor cluster. Curated by Adam Lundqvist, Founder at SQUR.