GhostSec Leaks Iranian Surveillance Software

GhostSec Reveals Iranian Surveillance Software

GhostSec, a hacktivist group known for its claim of commitment to human rights and cybersecurity, has recently made headlines by revealing details of Iranian surveillance software developed by the FANAP group.

Hackers claim to have successfully breached the FANAP Behnama software, exposing approximately 20GB of data.

This software, which includes facial recognition and motion detection systems, has been allegedly used by the Iranian government to monitor its citizens.

GhostSec’s revelations come at a time when concerns about civil rights violations in Iran have reached a critical point, partly triggered by the tragic death of Mahsa Amini in custody.

GhostSec on its Telegram Channel (Source: hackread)

Motives Behind GhostSec’s Actions

GhostSec’s primary motivation appears to be a commitment to human rights, privacy, and equality.

The group’s actions align with their pursuit of privacy rights for individuals, especially in regions where government surveillance is a contentious issue.

Exposing the Breached Data

The group has established a dedicated Telegram channel called “IRAN EXPOSED.”

Through this channel, they share insights into the breached data.

The group has gone a step further by publicly releasing portions of the compromised Behnama code, including configuration files and API data.

Surveillance Software Features

The exposed data reportedly includes tools for facial recognition-based video surveillance, car number plate recognition, and a system linked to the Single Sign-On (SSO) platform.

These tools play a crucial role in constructing profiles for extensive surveillance, impacting citizens’ lives significantly.

FANAP’s Response

In response to GhostSec’s allegations, FANAP denied the reports about the leak, claiming that the breach was not successful and that only a portion of the software logs and Docker files were made available.

FANAP also stated that their software “only has the ability to recognize faces that have been introduced to the device with the person’s presence and consent,” contradicting GhostSec’s claims of extensive surveillance.

For more news and updates on Cybersecurity, visit The Cybersecurity Club.

Photo by Albert Stoynov on Unsplash

EY Data Breach Exposes 30,000 Bank of America Customers

Cybersecurity Breach Hits Idaho National Laboratory (INL)

Mr. Cooper, The Mortgage Lender Hits by Major Cyberattack

USDoD Hacker Claims Data Leak of 58,000+ Individuals from TransUnion