Sweden has officially accused Iran of orchestrating a cyberattack aimed at sowing discord within the country. The Swedish Security Service (Sapo) revealed that Iranian intelligence hacked into a local text messaging service, sending out 15,000 messages that called for “revenge against Quran-burners.” These cyberattacks on Sweden are linked to a series of burning incidents of Islamic religious text that provoked outrage in many Muslim-majority nations and led to serious security concerns for Sweden.
The cyberattacks on Sweden occurred during the summer of 2023, with investigators detailing that a group named Anzu, acting on behalf of Iran’s Revolutionary Guards (IRGC), was responsible for the breach. The hackers reportedly gained access to sensitive information, including passwords and usernames, before dispatching threatening messages to individuals. The first of these messages was sent on August 1, 2023, stating that “those who insulted the Quran must be punished for their work”, reported BBC.
Islamic Text Burnings and Cyberattacks on Sweden
Fredrik Hallstrom of Sapo emphasized the link between the perpetrators and the Revolutionary Guards, noting that the attack not only targeted individuals but also aimed to amplify the existing threats against Sweden. The security service is increasingly concerned that foreign actors like Iran are exploiting such incidents to create divisions and instability within the nation.
The cyberattack on a Sweden company highlights the serious implications of state-sponsored cyber activities. Following the burnings of Islamic texts, which prompted legal actions and police interventions, Sweden’s government condemned the acts but faced backlash from various communities. Police attempts to ban the burnings were overturned by the courts, citing freedom of expression rights.
Iran’s embassy in Stockholm dismissed the accusations as “baseless,” arguing that they could harm bilateral relations. However, Swedish authorities maintain that the evidence collected during the investigation paints a different picture. Prosecutor Mats Ljungqvist confirmed that investigators were able to identify the Iranian hackers but faced limitations in prosecuting them, given the complexities of international law regarding extradition.
Multiple Allegations by the Sweden Government
The Sweden cyberattack is part of a broader pattern of accusations against Iran by Swedish authorities. Last May, Sapo warned that Tehran had been utilizing criminal networks within Sweden to carry out hostile acts against individuals and groups deemed threats by the Iranian government. Alongside Russia and China, Iran has been identified as one of the principal security threats facing Sweden today.
Justice Minister Gunnar Strommer expressed deep concern regarding the implications of state-sponsored cyberattacks, stating that it is particularly serious when a foreign state aims to “destabilise Sweden or increase polarisation in our country.” This sentiment reflects a growing unease in Sweden about the potential for foreign influences to disrupt the social fabric of the nation.
The unrest caused by the burnings of Islamic texts has had a tangible impact on Sweden’s diplomatic relations. Protests erupted in several countries, with Sweden’s embassy in Iraq set ablaze in response to the incidents. In the wake of this turmoil, Swedish prosecutors recently charged an Iraqi activist and an accomplice with incitement against an ethnic group about the burnings, highlighting the legal ramifications of the actions that sparked this international controversy.
Ashish Khaitan
Ashish is a technical writer at The Cyber Express. He adores writing about the latest technologies and covering the latest cybersecurity events. In his free time, he likes to play horror and open-world video games.