Pro-Israel “Sparrow Sparrow” Hacking Group has claimed that more than $ 90 million has been stolen from Iran’s largest Crypto Exchange, Nobitax in Cryptocurrency, and burnt funds in a politically inspired cyber attack.
The attack took place on 18 June 2025 with Nobatex First violation reporting Est at 2:24 pm on X.
“This morning, June 19, our technical team discovered signs of unauthorized access to our reporting infrastructure and a part of the hot wallet,” written in the post of Nobitex.
“After immediate detection, all access was suspended and our internal security teams are closely investigating the boundary of the incident.”
Soon after, hunter sparrow Claimed responsibility Promising to publish the source code and internal information of the company stolen during the cyber attack, for the attack through its Gonzesh’s Darree X account. Nobitex’s website remains offline since the attack.
“IRGC’s ‘Bank Seepah’ comes after Nobitax. Warning! In 24 hours, we will issue internal information from the source code of Nobtex and their internal network. Any property living there will be at risk after that point,”
“The Nobitax Exchange is at the center of governance’s efforts to finance terror worldwide, as well as a violation of governance’s favorite restrictions.
Blockchain analysis firm Elliptical report Crypto dried with a wallet of more than $ 90 million and got funnel in a address controlled by hackers.
However, instead of capitalizing on the breech and trying to maintain the stolen crypto, the hacking group sent almost all the crypto to the vanity address, which is the cryptographic wallet addresses, which are Islam-Anti-Islamic Republic Guard Corps (IRGC) messages such as IRGC “f*ckirgterrorrorrorlowerlorerlorerlorerloreritororrorrorrorrorrorrororerrcerrsrs”.
These vanity addresses require a lot of computational power to generate these vanity addresses with usable private keys, and according to the elliptical, the manufacture of such long string names in a pride address is “computically infected”. This means that hackers deliberately burnt crypto so that no one could reach it again.
“Hack also does not seem to be economically inspired,” eggs.
“Vanity addresses used by hackers are generated through” brut forces “methods – a large number of cryptographic key incorporates the creation of pairs unless there is no desired text.
Illiptic reports that his investigation in Nobitax also shows relations with IRGC and Iranian leadership.
Another researcher Was already connected Supreme leader Ali Khamenei, exchange of business interests associated with IRGC, and exchange of relatives of approved persons, who have allegedly used Nobitax. Drishtinta and Bitalocker Rainmware operations.
Hunter sparrow hecticist group Iran-controlled bank violated sepah A day before the Nobitax attack and also focused on disruption and damage instead of financial benefits.
These come as an attack Iran increasingly distinguishes itself from the global internet To reduce the risk of increasing cyber attack on its infrastructure.
Patching meant complex scripts, long and endless fire drills. No more.
In this new guide, the tines break down how it is leveling with modern organ automation. Patch fast, reduce overhead, and focus on strategic tasks – no complex script is required.
