The Iranian regime’s attack on Saudi Arabia’s oil company “Aramco” almost took our country to another unjustified war. A war that could cause death of thousands of our innocent compatriots just to ensure the survival of this regime. The bastard members of “Ansar Group”, hacking and security team, were behind cyber-attacks against “Aramco Services”. We are exposing here Ansar Group’s own documents, including “Ansar Group’s report on hacking Aramco Services”, about the goals of hacking this oil company, including getting access to this company’s scientists, getting access to its oil contracts, methods to infiltrate this oil company, actions for gathering information, carrying out social engineering against this oil company, etc.
Follow us… lots of exposures are coming up…
TRANSLATION BY LAB_DOOKHTEGAN
“Progress Report on Aramco Services Project”
(Projects in the fields of energy, oil companies, Aramco Company, Aramco Services Company)
Starting Date: 20/3/1398
• Main goals of the projects in the field of energy:
o Accessing the information on company’s employees
For recruiting agents (managers, technicians, etc.) and creating accesses
o Accessing contracts (clients)
For getting information about the contracts
o Accessing the programs, research and operation projects
For finding out about their current and future plans
For finding out about research and operational projects
For finding out about the technology in use, progress, etc.
o Accessing information on infrastructure
For planning and expanding cyber-attacks in the future
• Based on the organization’s goals concerning the information gathering about the energy field in Saudi Arabia, those companies linked to Aramco were chosen as the first target among the existing oil companies.
• Based on further research, Aramco Services Company was chosen as a target
Main goals of the oil project – Aramco Services:
o Accessing the information on company’s employees
For recruiting agents (managers, technicians, etc.) and creating accesses
o Accessing contracts (clients)
For getting information about the contracts
o Acessing the programs, research and operation projects
For finding out about their current and future plans
For finding out about research and operational projects
For finding out about the technology in use, progress, etc.
“Progress Report for the Project Aramco Services”
1. Information Gathering: at first, we were looking for the following information for planning:
a. General information about the company:
i. Goal: General familiarity with the structure, tasks, offices, … company’s
ii. Strategies:
1. Getting information about the company’s structure
2. Getting information about the company’s tasks
3. Getting information about various offices and their responsibilities
4. Getting information about the sub-companies
5. Getting information about the affiliated companies
6. Getting information about those sections that have access to information about the scientists
7. Getting information about those sections that have access to information about the employees
8. Getting information about those sections that have access to information about the projects
9. Getting information about those sections that have access to information about the contracts
iii. Methods:
1. Searching the company’s website
2. Searching the news published about the company
3. Searching the social networks
4. Searching the photos published about the company (maybe there is some information about the company in the photos)
5. Studying the ticket sent to the organization (usually it asks the customer to select the required part for sending the ticket and this way you can list different parts of this company)
6. Listing the company’s contact list
7. Listing the employees and their positions in the company
iv. Achievements:
1. Achieved general information about the structure, tasks, plans, offices, affiliated companies, etc.
2. First analysis of the information shows that this company has more than 15 sections with different tasks.
3. Each office has its own unique task
b. Information about the employees:
. Goal: identifying individuals with high access for infiltrating the company and or getting more information
i. Strategies:
1. Getting information about the current employees (including their tasks)
2. Getting information about those who worked for the company in the past
3. Getting information about individuals who are working or worked in the past in important sections of the company
ii. Methods:
1. Searching the social networks
2. Searching the information published by the company’s website
iii. Achievements
1. Information about more than 5000 employees of this company is available in Linkedin
2. Considering the large amount of information, information about 250 employess of this company has been gathered at first stage for analysis
iv. Cases under examination:
1. information about key managers of the company.
The “Ansar Group”, hacking and security team, has also attacked the satellite company “Thuraya” that belongs to the company “Yahsat” which provides services to 160 countries. This hack provides this group the capabilities for stealing customers’ information, locating, intercepting and monitoring millions of civilians. We are exposing here Ansar Group’s own documents about the goals of this project, hacking and infiltrating methods, information gathering and social engineering by this group. You can see very clearly how this cursed regime is able to arrest compatriots so quickly! You, members of Ansar Group, should know: your hands are contaminated with the blood of our compatriots… “Lab Dookhtegan” (“Read My Lips”) will never forgive you and will never forget your betrayal!
Follow us… lots of exposures are coming up…
You must be logged in to post a comment.