The Israeli hacker group ‘WeRedEvils’ has claimed responsibility for reported WiFi outages in Iran, according to a report originally published by Israeli media Jerusalem Post. This is not the first time the group has targeted foreign countries, having previously hacked into the main project management system for oil infrastructure in Iran.
Earlier, the group also claimed to have successfully blocked WhatsApp accounts of the Hadid family members and cut off the internet in Yemen in retaliation for Houthi missile launches. The recent attack against Iran follows an earlier threat of a strike against the country from the WeRedEvils hacker group.
WeRedEvils’ Statements and Previous History
Shortly before the internet disruptions were reported in Iran, the hacking group posted a message on their Telegram channel, warning, “In the coming minutes, we will attack internet systems and providers in Iran. A severe blow is on the way.”
True to their word, the group later claimed to have successfully breached Iran’s communications system, stating, “We managed to get our hands on vital and sensitive software that we will not go into detail about here, we are sure that Iran already understands the extent of the damage it currently has.”
The extent of the internet outages in Iran remains unclear, with conflicting reports from the country. The Jerusalem Post reported that many users in Iran had commented on social media about experiencing internet disruptions in parts of the country, including internet blackouts in certain areas of Tehran. However, public communication networks in Iran are often patchy, with many relying on cellular connectivity rather than fixed-line internet.
According to a X account identifying as an independent media channel covering news in Iran, public reports have identified the following regions as having their internet disrupted or severely reduced:
- Karaj
- Borujerd, Arstan
- Region 15, Kianshahr
- Mashhad
- Golestan
- Darab
- Kermanshah
- Izeh
- Zahedan
- Rasht
- Hamadan
- Khuzestan
This is not the first time the “We Red Evils Original” hacking group has claimed responsibility for attacks on foreign countries. In October 2023, the group asserted responsibility for a hack into the management system for oil infrastructure in Iran, warning that the damage could potentially “cause mass destruction in the event of internal leaks or overheating.” The group warned that the next warning that the next strike would be harder and more harmful.
“don’t play with fire. The next strike will be harder with many more harmed, and it will be different from the cyber attacks that you’re familiar with.
In November 2023, the hackers also claimed to have successfully blocked all members of the Hadid family from their WhatsApp accounts, providing screenshots and contact details as proof along with cuting off the internet in Yemen, in retaliation for Houthi missile launches, a claim that was corroborated by the Internet Observatory Netblocks.
Timing and Potential Retaliation
The timing of this latest attack on Iran’s internet infrastructure is particularly significant, as it comes shortly after the reported assassination of Hamas’ political leader, Ismail Haniyeh, in Tehran on Wednesday. The attack has been attributed to Israel’s military, and Iran is reportedly preparing to avenge the killing.
As the weekend begins in Iran, it remains to be seen whether any further details or confirmation of the extent of the internet outages will emerge from within the country. The situation underscores the ongoing cyber warfare between Israel and Iran, with each side seeking to gain the upper hand through digital means.
