Risk Level:
99% May harm your business future; Persons or entities that engage in transactions with this entity will be exposed to sanctions or subject to an enforcement action;

Working with this entity means supporting Iranian Regime, Regime Terrorist Activities & development of WMD

Status:
Top Alert – Entity designated / sanctioned for terror, WMD and human rights violation

Info:
Roozbeh Sabahi (Sabahi) was a contractor for the Mabna Institute;

Roozbeh Sabahi assisted in the execution of the various Mabna hacking activities, including its university campaign by, among other things, organizing stolen credentials obtained by Mabna Institute hackers;

Roozbeh Sabahi is wanted for his alleged involvement in criminal activities, including obtaining unauthorized access to computer systems, stealing proprietary data from those systems, and selling that stolen data to Iranian customers such as Iranian universities and the Iranian government;

Victims of the scheme included approximately 144 universities in the United States, 176 foreign universities in 21 countries, five federal and state government agencies in the United States, 36 private companies in the United States, 11 foreign private companies, and two international non governmental organizations;

Also Known As:
Roozbeh Sabahi

Involved In:
Cyber criminal

Born:
08 Mar 1994

Country:
Iran

Reason for the color:
» U.S. Department of Justice, the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) designated Roozbeh Sabahi under Executive Order (E.O.) 13694, “Blocking the Property of Certain Persons Engaging in Significant Malicious Cyber-Enabled Activities,” as amended. The entity designated today engaged in the theft of valuable intellectual property and data from hundreds of U.S. and third-country universities and a media company for private financial gain;
» On February 7, 2018, a grand jury sitting in the United States District Court for the Southern District of New York indicted Roozbeh Sabahi on computer intrusion, wire fraud, and aggravated identity theft charges, and a federal arrest warrant has been issued for his arrest;
» FBI issued warrant on February 7, 2018 for his arrest;
» Iranian firm stole data In massive spear phishing campaign;
» Charleston uncover Iranian hacking scheme;
» Iran cyber threat is growing;
» Massive cyber-attack by Iran stole data from governments, companies and universities;


You May Be Interested

IFMAT Color Guide

×
We sort entities who are connected with terrorist activities, in two sections, first by risk and second by geolocation.
GeoLocation divisions are divided into two fields, Black List and Gray List.
BlackList is a list of all companies, organizations and figures who originate from Iran.
GrayList is a list of all companies, organizations and figures out of Iranian borders, and doing business with Iran.
We identify risk of entities by COLOR selection, each color marks the risk level of the entity.(by declining order)
 
TOP ALERT
Designated / Sanctioned / Illicit entities
 
HIGH ALERT
Entities affiliated with Designated / Sanctioned / Illicit entities.
 
MEDIUM ALERT
Entities sanctioned in the past for Terror or Illicit activities / WMD related / Human rights violations.
 
RISK ALERT
Entities in a problematic sector - Sector controlled by the Top Alert entities.
 
GENERAL ALERT
Legitimate entities - we cannot determine whether an entity is completely green, and that is due to the facts that the Iranian economy is not transparent enough for us. Be sure.