ALBAWABA - A series of coordinated cyberattacks targeting some of Iran's largest state-owned banks has caused widespread disruptions to banking services across the country, affecting electronic transactions, ATM networks, and payment systems.
The attacks reportedly struck four major financial institutions—Bank Melli Iran, Bank Tejarat, Bank Saderat, and the Export Development Bank of Iran—over a two-day period, temporarily impacting access to key financial services for businesses and consumers.
According to reports, the banks were vulnerable to a simultaneous attack because they share parts of the same digital and communications infrastructure. The disruption spread across multiple systems, creating delays in financial transactions and affecting payment services in several regions.
Analysts cited in regional reports said the operation appeared designed to target critical components of Iran's financial network. The affected institutions play a central role in the country's banking system and have previously been identified by Western governments as important channels for international trade and financial operations linked to Iranian state institutions.
Iranian authorities acknowledged significant disruptions to electronic banking services, including ATM networks and point-of-sale systems. Local reports indicated that banking services were temporarily interrupted for a large number of customers during the height of the incident.
Officials later stated that cybersecurity teams had regained control of the affected infrastructure and that services were gradually returning to normal. Authorities also emphasized that no customer information had been stolen and that banking databases remained intact.
The attacks occurred as diplomatic efforts involving Iran and the United States continue to attract international attention, leading some observers to speculate about a possible political or strategic motive behind the timing of the operation.
No individual, group, or government has claimed responsibility for the cyberattacks, and Iranian officials have not publicly identified any suspects.
The incident highlights the growing role of cyber operations in regional tensions, as digital infrastructure increasingly becomes a target in geopolitical disputes across the Middle East.
