March 28, 2011, 1:56 PM — On Thursday I mentioned, in conjunction with successful attacks on the highly secure Comodo and RSA security sites, the brag of an Iranian general that his "Cyber Army" was attacking "web sites of the enemy."
Since the general announced his success a day before the actual attack, it would have been easy to assume the two successful attacks and his premature announcement were an unusually cunning bit of psy-ops misdirection or tradecraft.
Hanlon's Razor (Never attribute to malice that which is adequately explained by stupidity.) requires we assume they weren't connected, or that both bragger and attacker were idiots.
The jury's still out on the general, but the attacks seem to have come not from the state-sponsored Basij militia group that is made up of teenage boys, college students, professors and other "brave" defenders of the Islamic revolution, the general said.
The actual attacks he bragged about appear to be the Feb. 21 attack on the U.S. government's Voice of America site, whose DNS entries were altered so links to it send viewers to a site showing this image and message calling on the U.S. to stop "interfering in Islamic countries."
This week someone claiming to be the actual attacker who got nine fake security certificates from Comodo and to have cracked RSA, surfaced this week claiming both to be a 21-year-old cracker who is not part of the Basij Cyber Army and implies he's part of a group with the programming, project management and hacking experience of 1,000 hackers.
While part of that is "an almost unbelievable amount of BS in its purest form" as arstechnica put it, it also sounds like the kind of overblown-metaphorical defiance we've heard from Saddam Hussein, Moammar Quaddaffi.