Aug 30, 2023
Hacktivists Breach Iranian Surveillance System
By Emma Woollacott Senior Contributor
Hacking group GhostSec says it's successfully taken down Iran's privacy-invading software Fanap Behnama, revealing details about its surveillance capabilities.
The group has exposed 20GB of data, including source code, relating to face recognition and motion detection systems from Iranian software company Fanap.
While Fanap was initially established as a native Iranian banking system, it has been apparently expanded into a comprehensive surveillance system used by the Iranian government to monitor its citizens.
GhostSec says it plans to make the data public, and has set up a dedicated Telegram channel called Iran Exposed to share further information. It says it plans to publish segments of the Behnama code, including various components such as configuration files and API data, and says it will provide in-depth explanations once all the data has been uploaded.
"This is not about technology and software, it's about the privacy of the people, civil liberties and a balance of power," says GhostSec.
"Also publishing the source code for the public presenting this Fanap's lovely AI face recognition and various other privacy invading features and tools. We're simply making the fight a bit more equal."
The group says it's uncovered tools for facial recognition-based video surveillance, used in the Pasargad Bank Car GPS and tracking system, along with a car numberplate recognition system—which could have implications for hijab alerts—and a facial recognition system used for ID card printing.
It is also claiming that the Fanap system is linked to the Single Sign-On (SSO) platform employed by the regime for online user authentication.
"This integration compiles intricate aspects of citizens’ lives, not only to determine access privileges for services but also to construct a virtual profile for facial recognition," says cybersecurity firm Cyberint.
"The group maintains that this evaluation is rooted in the software code, substantiating indisputable evidence of the software’s capabilities and deployment."
GhostSec initially claimed responsibility for shutting down the fanap-infra.com website, but later revealed that another website associated with the Fanap software company was only accessible within Iran; meanwhile, the main GitHub repository of the company was made private, presumably in response to the GhostSec attack.
"That mean[s], they are scared. That mean[s] it's time to hit harder," says GhostSec.Earlier this year, Iran introduced a new “hijab law,” monitoring women through surveillance cameras to enforce the wearing of the hijab in public places and in vehicles.
In a statement, the police force said it would "not tolerate any kind of individual or collective behavior and action in violation of the law."However, women have been repeatedly defying the rules, which have also been criticized by legal experts both within and outside the country.
Follow me on Twitter.