The person at the center of this case
144 U.S. universities, 176 foreign universities, 5 U.S. government agencies, 36 U.S. private companies, and international organizations
Cold Case · Open
8 years waiting · since 2018
IRANIAN MABNA HACKERS
Justice for 144 U.S. universities, 176 foreign universities, 5 U.S. government agencies, 36 U.S. private companies, and international organizations — the trail went cold in 2018, but the truth hasn't.
Start here
Key leads to think about
🎯
suspect
Lead #1Who are the nine Iranian nationals indicted and what are their current locations?
🔍
evidence
Lead #2What specific proprietary data was stolen and how was it monetized?
👤
person
Lead #3What role did the Islamic Revolutionary Guard Corps play in directing these operations?
On February 7, 2018, a federal grand jury indicted nine Iranian nationals for orchestrating a sophisticated computer intrusion scheme targeting academic institutions and government agencies across the United States and internationally. The hackers, operating as contractors for the Mabna Institute—a private Iranian government contractor—stole proprietary research data and sold it to Iranian customers including the government and universities. The scheme victimized approximately 144 U.S. universities, 176 foreign universities, five U.S. government agencies, 36 private U.S. companies, and multiple international organizations, making it one of the largest coordinated cyber theft operations attributed to state-sponsored actors.
Case
#893
United States District Court for the Southern District of New York; Federal Bureau of Investigation
Try asking
Claim this imported case
A one-time $10 claim transfers this imported case workspace to your account. You get 10 uploads for this case, 25 daily AI questions for this case, and public tips with files route to you.
10 uploads25 AI questions/day
This does not start a subscription. When the included limits are reached, the Personal plan unlocks more workspace capacity.
More leads to consider
Beyond the top three above — each detail below could be the thread that pulls this case open.
📍
location
Lead #4How were the hackers able to maintain operational security across multiple countries?
💡
clue
Lead #5Which U.S. universities and government agencies were primary targets and why?
Have information about any of these leads?
Even the smallest detail could be the key to solving this case.
Official wording
Source Narrative
Conspiracy to Commit Computer Intrusions; Conspiracy to Commit Wire Fraud; Computer Fraud–Unauthorized Access for Private Financial Gain; Wire Fraud; Aggravated Identity Theft Caution: On February 7, 2018, a grand jury sitting in the United States District Court for the Southern District of New York, indicted nine Iranian nationals for their alleged involvement in computer intrusion, wire fraud, and aggravated identity theft offenses. As alleged in the indictment, the men were involved in a scheme to obtain unauthorized access to computer systems, steal proprietary data from those systems, and sell that stolen data to Iranian customers, including the Iranian government and Iranian universities.
Each individual was a leader, contractor, associate, hacker for hire, or affiliate of the Mabna Institute, a private government contractor based in the Islamic Republic of Iran that performed this work for the Iranian government, at the behest of the Islamic Revolutionary Guard Corps. Victims of the scheme included approximately 144 universities in the United States, 176 foreign universities in 21 countries, five federal and state government agencies in the United States, 36 private companies in the United States, 11 foreign private companies, and two international non-governmental organizations.
Timeline of Events
🕵️
2018-02-07
Federal Grand Jury Indictment
Nine Iranian nationals indicted for computer intrusions, wire fraud, and aggravated identity theft by U.S. District Court for the Southern District of New York
Key Locations
Interactive map showing important locations related to this case
Case Information
Incident:February 7, 2018
Last Updated:June 15, 2026
Leave a comment
Comments
Case Information
Incident:February 7, 2018
Last Updated:June 15, 2026