UK, US condemn Iran for ‘unprecedented’ cyber attack against Albania

Two security guards stand outside the walls of the Iranian embassy in Tirana, as an Iranian flag looms over them

The UK government has officially condemned the Iranian state for a cyber attack against Albania to which the country has been linked.

On 15 July, the Albanian government suffered a major cyber attack, as threat actors destroyed data, shut down the public service portal ‘e-Albania’, and leaked details of the Albanian prime minister and ministry of foreign affairs.

What is cyber warfare? Iranian hacking group continues to target US citizens Should your business worry about Chinese cyber attacks?

Essential services, such as a public-facing portal for booking medical appointments, the system by which children are enrolled at school, and online utility bill websites, were also affected in the attack.

The National Cyber Security Centre (NCSC) has concluded to a high degree of certainty that Iranian-linked threat actors are behind the attack. The US National Security Council (NSC) likewise blamed the Iranian government for conducting the operation in a White House statement.

Yesterday, Albania severed diplomatic ties with Iran over the incident, and gave embassy staff, security teams and diplomatic personnel in Tirana 24 hours to leave the country. It is the first case of cutting diplomatic ties in response to a cyber attack.

Attacks on critical national infrastructure (CNI) are a growing threat, with malware tailor-made to destroy industrial systems having been found in the wild. Security groups have been warning for years about the specific involvement of Iranian-backed threat actors in such attacks.

RELATED RESOURCE

Introducing IBM Security QRadar XDR

A comprehensive open solution in a crowded and confusing space

FREE DOWNLOAD

“Albania views impacted government networks as critical infrastructure,” said NSC spokesperson Adrienne Watson.

"Malicious cyber activity by a State that intentionally damages critical infrastructure or otherwise impairs its use and operation to provide services to the public can have cascading domestic, regional, and global effects; pose an elevated risk of harm to the population; and may lead to escalation and conflict.“

Having assisted Ukraine against such cyber attacks for months following Russia’s invasion of the country in February, the NCSC have warned against UK-based security teams becoming burned out and letting their guard down as a result.

The Iranian government deny involvement in the attack, citing its long struggle with attacks such as the Stuxnet worm to indicate that it is the victim of threats to CNI. As a NATO member, Albania has been joined in support by many western powers.

“Iran’s reckless actions showed a blatant disregard for the Albanian people, severely restricting their ability to access essential public services,” stated foreign secretary James Cleverly, who entered his cabinet role on Tuesday.

“The UK is supporting our valuable partner and NATO ally. We join Albania and other allies in exposing Iran’s unacceptable actions.”

Rory Bathgate is Features and Multimedia Editor at ITPro, overseeing all in-depth content and case studies. He can also be found co-hosting the ITPro Podcast with Jane McCallion, swapping a keyboard for a microphone to discuss the latest learnings with thought leaders from across the tech sector.

In his free time, Rory enjoys photography, video editing, and good science fiction. After graduating from the University of Kent with a BA in English and American Literature, Rory undertook an MA in Eighteenth-Century Studies at King’s College London. He joined ITPro in 2022 as a graduate, following four years in student journalism. You can contact Rory at rory.bathgate@futurenet.com or on LinkedIn.