Iranian Hacker Group GhostSec Exposes Alleged Surveillance Software Used by FANAP Group

In a startling revelation, the hacker group GhostSec has disclosed the source code of various software packages, claiming that they are surveillance tools used by the Iranian government. The FANAP group, known for providing technology to financial services and the IT sector, has allegedly expanded its offerings to include a comprehensive surveillance system. GhostSec’s findings have raised concerns about privacy invasion and government monitoring of Iranian citizens.

Background on GhostSec and the FANAP Group

GhostSec is a prominent hacker group known for its commitment to human rights. The FANAP group, on the other hand, is an Iranian technology provider that has established its presence in the financial services and IT sectors. However, recent developments suggest FANAP’s involvement in developing surveillance software for the Iranian government.

Discovery of Surveillance Software within FANAP Software

On August 27, GhostSec revealed that it had discovered facial recognition capabilities and various other tools that invaded privacy within FANAP’s software. The implications of such technology being available to the Iranian government raise serious concerns about citizen surveillance.

Allegations against Pasargad Bank’s involvement

GhostSec specifically alleges that the surveillance software developed by FANAP was deployed across all branches of Iran’s Pasargad Bank. Pasargad Bank is renowned for its role as an investor in FANAP, making the claims of its involvement particularly concerning.

Details about the surveillance software’s architecture and components

Upon examining the leaked source code, GhostSec experts found that the software was built on a microservice architecture. It included Apache Kafka for real-time processing of video data, Redis and Postgres for storing metadata and analysis results, and services designed for system monitoring. These findings suggest the software’s advanced capabilities and potential reach.

Behnama: A Powerful Instrument of Surveillance

GhostSec highlights Behnama as more than just a tool. It is described as a powerful instrument used by the Iranian government, law enforcement agencies, and military personnel for surveillance purposes. This revelation further intensifies concerns about the extent and nature of citizen monitoring in the country.

GhostSec’s Motives for Exposing the Breach

GhostSec’s official statement regarding the breach aligns with its mission to uphold human rights. The hacker group aims to shed light on potential violations of privacy and advocate for the protection of individuals’ fundamental right to privacy.

GhostSec’s Method of Accessing the Source Code

In a message shared on Telegram, a member of GhostSec revealed that they had gained access to the FANAP infrastructure, enabling them to capture the source code. The method employed to expose the surveillance software highlights potential vulnerabilities in FANAP’s security measures.

FANAP’s Denial and Response to the Report

FANAP responded to the allegations made by GhostSec, denying any leak of their software’s source code. They dismissed the claims as lacking technical expertise and accused GhostSec of attempting to manipulate public opinion.

FANAP’s claims about the software’s functionality

FANAP argues that their software only possesses the ability to recognize faces that have been introduced to the device with the person’s presence and consent. They assert that their technology does not infringe on individual privacy, directly contradicting the concerns raised by GhostSec.

The exposure of alleged surveillance software used by FANAP and the Iranian government has sparked significant debate regarding privacy and citizen rights. GhostSec’s findings shed light on the potential invasion of privacy and prompt a reevaluation of the balance between national security and individual liberty. As this story continues to unfold, further investigations and discussions will be crucial in determining the extent of surveillance in Iran and its implications for human rights.

Explore more

Ethereum Uses AI Swarms to Proactively Patch Network Flaws

The architectural integrity of global decentralized networks has reached a pivotal juncture where the speed of malicious exploitation often outpaces the traditional cadence of human-led security audits. To address this widening gap, The Ethereum Foundation has fundamentally transitioned its security strategy from a reactive model to an automated, proactive defense paradigm that leverages the power of machine learning. This shift

How Is ERP Modernization Driving DLA to Audit Readiness?

The Defense Logistics Agency currently manages an intricate global supply chain that serves as the backbone for the United States military, requiring an unprecedented level of financial precision and operational transparency to meet modern oversight requirements. This massive undertaking involves a transition from aging, siloed legacy systems to a unified Enterprise Resource Planning environment designed to provide real-time visibility into

What Makes Odyssey Infostealer a Global Threat to macOS?

The long-standing myth that macOS remains immune to sophisticated cyberattacks has been decisively shattered by the emergence of the Odyssey infostealer, a highly specialized malware variant engineered to bypass modern system integrity protections. This transition represents a fundamental shift in the threat landscape, where the historical security-by-obscurity advantage once enjoyed by Apple users has entirely vanished. As the adoption of

Can AI Secure Windows Without Compromising Stability?

The sheer scale of modern software development has reached a point where manual code review is no longer sufficient to protect the billions of devices running Windows across the globe. As lines of code multiply and interdependencies become more complex, traditional security measures are struggling to keep pace with the rapid evolution of sophisticated digital threats. In response to this

Xero Launches JAX to Redefine Accounting with Agentic AI

Small business owners have historically spent an exhausting amount of time tethered to spreadsheets and receipts, but the emergence of agentic AI is finally turning those static records into a living, breathing financial command center that operates with minimal human oversight. With more than five million global subscribers now integrated into its ecosystem, Xero is spearheading a movement toward Accountable