The hacker collective “Gonjeshke Darande” has surfaced data alleging they breached Nobitex’s systems—leaking 276 MB of source code, wallet addresses, backend tools, and internal documentation. They along with reportedly siphoning $90 million from user wallets . The group claims this exposes critical vulnerabilities in Iran’s fintech infrastructure.
Alleged Actor Ties and Strategic Context
Known as “Predatory Sparrow,” the cyber group is widely believed to be aligned with Israeli cyber units, though no definitive proof has been provided. While violent attacks alongside the Gaza conflict dominate headlines, strategic digital strikes—economic and infrastructural in nature—appear to be a growing tactic. Targeting a high-profile Iranian exchange like Nobitex aligns with this broader escalation.
FCRF x CERT-In Roll Out National Cyber Crisis Management Course to Prepare India’s Digital Defenders
Repercussions for Users and Regulatory Fallout
If confirmed, the breach may have debilitating effects on Nobitex users and Iran’s broader digital economy. Aside from the financial losses, leaked wallet addresses and platform tools could underpin future attacks. Iranian authorities are likely to face pressure not only to compensate users swiftly—but also to shore up systemic cybersecurity defenses.
Cyber Warfare in Political Crossfire
This incident echoes earlier activity, such as suspected state-linked hacks on Iran’s critical infrastructure. The Nobitex breach is potentially one of the largest cyber incursions amid escalating tensions between Iran and Israel. Analysts warn that the exchange may have been marked both for its economic value and symbolic significance.
Why It Matters
Scale and scope: If verified, this attack could be among the most costly in Iran’s crypto-history.
Economic and strategic hit: Beyond monetary losses, the breach likely weakens confidence in domestic crypto and fintech.
New front in cyber conflict: Reflects increasingly digital battlegrounds intertwined with conventional geopolitical hostilities.
This developing story demands verification from Nobitex and possible confirmation from cybersecurity watchdogs. With tensions rising in digital and physical domains, observers will closely examine the fallout and lessons learned.
This article is informed by an unverified report from DarkFeed highlighting the leaked code and $90M claim and builds on context around contemporaneous cyber‑geopolitical pressures.