Iran’s Sepah Bank has reportedly fallen victim to a cyberattack by the pro-Israel group “Predatory Sparrow,” which claimed responsibility for disabling the bank’s operations and erasing its data. In a public statement, the group said the attack was specifically directed at Sepah Bank, an institution allegedly affiliated with Iran’s Islamic Revolutionary Guard Corps (IRGC). According to the group, the bank has been bypassing international sanctions and using the Iranian people’s money to finance terrorist organizations, ballistic missile programs, and military nuclear projects.
TechCrunch, which reported the news, noted that the attack has not yet been independently verified. Emails sent to Sepah Bank’s Iranian addresses bounced back, and no official statements have been received from its branches in the United Kingdom or Italy. The group also did not respond to TechCrunch’s inquiries sent via X (formerly Twitter) and Telegram.
Iran International, an independent Iranian news outlet, reported widespread banking disruptions across the country following the incident. Several Sepah Bank branches were temporarily closed, and customers reported being unable to access their accounts. Ariel Oseran, a correspondent for Israel’s i24NEWS, shared images of Iranian ATMs displaying error messages.
The cyberattack occurred amid escalating military tensions between Israel and Iran. In recent days, Israel has launched strikes on Iran’s nuclear facilities, military bases, and high-ranking military officials, leading to growing instability in the region.
Although the identities and affiliations of Predatory Sparrow’s members remain unknown, the group has reportedly been targeting Iranian state institutions and infrastructure for years. Cybersecurity experts say the group was behind previous attacks on Iran’s steel plants and fuel stations, causing significant economic and social disruption.
John Hultquist, Chief Analyst at Google’s cybersecurity firm Mandiant, noted that Predatory Sparrow’s actions are not merely symbolic, emphasizing the group’s capacity for real, impactful cyber operations. Rob Joyce, a former U.S. National Security Agency official, also confirmed that the group’s past attacks had tangible consequences in Iran.
