Iran says four major banks hit by cyberattack, no customer data compromised

A cyberattack disrupted services at Bank Melli, Bank Tejarat, Bank Saderat, and the Export Development Bank of Iran, affecting a shared communications infrastructure. Iranian banking authorities said no customer data was accessed or deleted. The attack was reported at around 11:05 Jerusalem time, following earlier reports of disruptions Friday morning.

Iranian banking authorities now say no customer data was compromised in the cyberattack that disrupted services at four major banks earlier today. The update was reported by state media at around 11:05 Jerusalem time, following hours of widespread outages at Bank Melli, Bank Tejarat, Bank Saderat, and the Export Development Bank of Iran that affected ATMs, payment terminals, and mobile apps. Technical teams continue working to restore full service, according to the reports.

The story first emerged Friday morning. At 10:47 Jerusalem, The Zioneer reported that state media had flagged the attack as an ongoing disruption. By 12:36 Jerusalem, a series of updates had confirmed the four banks by name, added that the attack targeted a shared communications infrastructure, and — moving from a single IRGC-linked source (Fars news agency) to multiple newsrooms — established that Iranian officials were already denying unauthorized data access or deletion. The current confirmation from authorities that no customer data was compromised is the strongest official denial so far.

The attack comes amid heightened regional tensions, including cyber operations by Iranian groups such as Khanzala and repeated infrastructure disruptions, as The Zioneer has reported. Bank Melli was designated by Israel as a terrorist organization approximately six months ago, a designation cited in earlier thread coverage.

What remains open: the identity of the attackers, the full extent of the operational impact, and whether any data was indeed exfiltrated — Iranian officials continue to deny data theft, but no independent verification has been reported. Earlier unverified reports from June 11 of funds vanishing from Iranian accounts, including at Bank Sepah and Bank Melli, are not linked to this attack by Iranian authorities.

11 developments

1. yesterday · 12:34 · 14 JunLatest

   Credit card services disabled at Bank Melli, Tejarat, Saderat, and Tose’eh Saderat.

2. 11:07 · 14 Jun

   Authorities confirm no customer data was compromised in the four-bank attack.

3. 10:47 · 14 Jun

   Banking council denies unauthorized data access or deletion following the disruption

• Strong4 days ago · 20:11 · 11 JunReports: Funds vanish from accounts of several Iranian citizens
• Developing17:56 · 8 JunIsraeli credit card spending drops 23.4% amid Iran escalation, data shows
• Developing23:00 · 7 JunIran cuts internet as Israel assesses multi-front response after attacks
• Strong6 days ago · 06:37 · 10 JunReports: Iranian communications, command-and-control facilities among targets struck

Source and signal

• Internal intake