Iranian hackers have reportedly entered networks at British universities to steal academic research documents which are now for sale on WhatsApp.

The Telegraph reported that some of the papers covered topics including nuclear development and computer encryption.

The documents are being sold on Farsi language websites in addition to the WhatsApp messaging app. The price of papers vary but they start at £2.

The intellectual property theft was initially reported last month by Secureworks researchers who discovered a URL spoofing a login page for a university, tricking people into giving them their usernames and passwords: the tip of what turned out to be a credential-stealing iceberg.

According to Sophos, 16 domains were uncovered containing over 300 spoofed websites and login pages for a global campaign targeting 76 universities located in 14 countries, including Australia, Canada, China, Israel, Japan, Switzerland, Turkey, the UK, and the US.

Secureworks tied the campaign to the Iranian government.

“In February, the US indicted nine Iranian nationals for alleged computer intrusion, wire fraud, and aggravated identity theft. The indictment alleged that the men were involved in a scheme to obtain unauthorized access to computer systems, steal proprietary data from those systems, and sell the stolen data to Iranian customers, including the Iranian government and Iranian universities.”

Dave Palmer, a former MI5 and GCHQ officer, told The Telegraph:

“Universities should be worrying about it.”

0 0 vote
Article Rating
Notify of
Inline Feedbacks
View all comments

I have no idea why we tell the world who is developing UK tech. Look at Magma, we’ve to the world that the University of Manchester is involved so anyone wanting to obtain data can target the University.

Daniele Mandelli

Because often us Brits are really really naive and stupid?


It’s not unique to the UK. When it’s in universities it’s academic research so who is working on what and where is in the public domain, in fact a researcher is to a large extent judged by the number of papers that they publish in academic journals, weighted for the prestige of the journals in which their papers appear, so simply subscribing to the appropriate journals is a good way to map the world wide network of who’s doing what where. Academic departments world wide are also very explicit and specific about their key staff’s particular areas of interest in… Read more »

Daniele Mandelli

Thank you for enlightening me Julian.

As usual a most thorough response.

Daniele Mandelli

This p****s me off. It’s like giving away freebies to all who would take advantage of our tech and research.

And to rub salt in they are selling it too!

uninformed idiot

NUKE’EM!! Or retaliate with the “2000 offensive cyber employees working at GCHQ” (which hit my news feed)