Pierluigi Paganini
June 19, 2025
Global internet monitor NetBlocks reported almost near-total Internet disruptions in Iran as tensions with Israel escalated into the first week of conflict.
However, the exact cause behind the collapse of Iran’s internet remains unclear. While the timing coincides with escalating military conflict and a wave of cyberattacks, there is no evidence linking the internet blackout to a specific technical failure, deliberate government action, or external cyber operation.
⚠️ Confirmed: Live network data show #Iran is now in the midst of a near-total national internet blackout; the incident follows a series of earlier partial disruptions and comes amid escalating military tensions with Israel after days of back-and-forth missile strikes 📉 pic.twitter.com/Iu598aIMRJ
— NetBlocks (@netblocks) June 18, 2025
Other firms, including Cloudflare, reported internet traffic disruption. The blackout follows several cyberattacks on Iranian institutions, including the major bank Iran’s Bank Sepah. Iranian media claims Israel is waging a “massive cyber war,” prompting authorities to restrict internet access nationwide.
Following the attacks against Iran, the country’s largest crypto exchange, Nobitex, was hacked and threat actors stole funds from its hot wallet.
The pro-Israel hacking group “Predatory Sparrow” claimed responsibility for cyberattacks targeting Iran during ongoing military tensions. The group said it breached crypto exchange Nobitex, accusing Iran of using it to evade sanctions, and reportedly sent the stolen crypto to unusable wallets. Nobitex confirmed the breach and suspended access. The group also claimed to have destroyed data at Iran’s state-owned Bank Sepah, citing IRGC ties. Iran’s Fars news agency warned of possible banking disruptions, including at gas stations.
“Crypto-tracking firms Elliptic and TRM Labs confirmed the crypto was stolen and sent to “wallets” or crypto accounts, with an expletive that referenced Iran’s Islamic Revolutionary Guard Corps (IRGC).” reported CNN World. “In a separate hack on Tuesday, Predatory Sparrow said it had destroyed data at Iran’s state-owned Bank Sepah, claiming IRGC members used the bank’s services as a justification for the action. Iran’s state-affiliated Fars news agency warned of potential disruptions to bank services at gas stations.”
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, information warfare)
