The person at the center of this case
United States financial sector and companies
Cold Case · Open
10 years waiting · since 2016
IRANIAN DDoS ATTACKS
Justice for United States financial sector and companies — the trail went cold in 2016, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1What was the operational structure and command hierarchy between ITSecTeam, Mersad, and the Iranian Revolutionary Guard Corps?
🔍
evidence
Lead #2How were the DDoS attacks technically executed and what specific vulnerabilities were exploited?
📍
location
Lead #3Were there any U.S.-based infrastructure or intermediaries used to facilitate the attacks?
On January 21, 2016, a federal grand jury in New York indicted seven Iranian nationals for conducting coordinated distributed denial of service (DDoS) attacks against U.S. financial institutions and companies between 2011 and 2013. The defendants were managers or employees of Iranian private security firms ITSecTeam and Mersad that operated on behalf of the Iranian Government and Islamic Revolutionary Guard Corps. The case remains significant in understanding state-sponsored cyber operations targeting American critical infrastructure.
Case
#642
Federal Bureau of Investigation (FBI) and U.S. Attorney's Office, Southern District of New York
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
💡
clue
Lead #4What attribution methods and digital forensics connected the attacks to these specific Iranian nationals?
⏰
timeline
Lead #5Why was there a two-year gap between the end of the attacks in 2013 and the indictment in 2016?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Computer Intrusion. Caution: On January 21, 2016, a grand jury in the Southern District of New York indicted seven Iranian nationals for their involvement in conspiracies to conduct a coordinated campaign of distributed denial of service (“DDoS”) attacks against the United States financial sector and other United States companies from 2011 through 2013.
Each defendant was a manager or employee of ITSecTeam or Mersad, private security computer companies based in the Islamic Republic of Iran that performed work on behalf of the Iranian Government, including the Islamic Revolutionary Guard Corps.
Timeline of Events
🕵️
2011-01-01
DDoS Campaign Begins
Coordinated distributed denial of service attacks against U.S. financial sector commence
🕵️
2013-12-31
DDoS Campaign Ends
Campaign of attacks against U.S. companies concludes
🔍
2016-01-21
Federal Indictment
Grand jury in Southern District of New York indicts seven Iranian nationals for conspiracy to commit computer intrusion
Key Locations
Interactive map showing important locations related to this case
Case Information
Incident:January 1, 2011
Last Updated:April 29, 2026
Leave a comment
Comments
Case Information
Incident:January 1, 2011
Last Updated:April 29, 2026