Alireza Shafie Nasab

ifmat - Alireza Shafie Nasab

Alireza Shafie Nasab is an IRGC-CEC-affiliated cyber actor who was involved in the same multi-year cyber campaign targeting U.S. entities while employed by MASN’s predecessor, Mahak Rayan Afzar

Country:

Iran  

Status:Top Alert – Entity designated / sanctioned for terror, WMD and human rights violation

Risk Level:99%

May harm your business future. Persons or entities that engage in transactions with this entity will be exposed to sanctions or subject to an enforcement action.

Working with this entity means supporting Iranian Regime, Regime Terrorist Activities & development of WMD

Info:
Alireza Shafie Nasab is an IRGC-CEC-affiliated cyber actor who was involved in the same multi-year cyber campaign targeting U.S. entities while employed by MASN’s predecessor, Mahak Rayan Afzar

The Rewards For Justice Program, United States Department of State, is offering a reward of up to $10 million for information leading directly to the identification or location of Alireza Shafie Nasab.
Caution:

Alireza Shafie Nasab is wanted for his alleged involvement in malicious cyber activity against United States companies and individuals from May of 2017 to October of 2021. Nasab is also known to have been employed by Mahak Rayan Afraz, a Tehran-based software company. On June 15, 2023, a federal arrest warrant was issued for Nasab in the United States District Court, Southern District of New York, after he was charged with Conspiracy to Commit Computer Fraud; Wire Fraud; Conspiracy to Commit Wire Fraud; and Aggravated Identity Theft.

Mehrsam Andisheh Saz Nik (MASN), formerly known as Mahak Rayan Afzar, is an IRGC-CEC front company that has supported malicious cyber activity conducted by the IRGC-CEC. The company has been associated with multiple Iranian advanced persistent threat (APT) groups, including Tortoiseshell. The company is also associated with other malicious cyber activity, including a multi-year campaign targeting over a dozen U.S. companies and government entities, including the Department of the Treasury.

The Iranian public should be aware that the IRGC-CEC uses private companies and their employees to achieve illegal goals.

Iranian cyber actors continue to target the United States using a wide range of malicious cyber activity, from conducting ransomware attacks against critical infrastructure to conducting spear phishing and other social engineering campaigns against individuals, companies, and government entities. The IRGC-CEC, one of the Iranian government organizations behind malicious cyber activity, works through a series of front companies to target the United States and several other countries.

OFAC designated the IRGC-CEC, also known as the IRGC Electronic Warfare and Cyber Defense Organization, pursuant to E.O. 13606 on January 12, 2018, for being owned or controlled by, or acting for or on behalf of, the IRGC, which itself was designated pursuant to E.O. 13224 on October 13, 2017

Involved In:
Malicious cyber activity

Also Known As:
Alireza Shafie-nasab
Alireza Shafie’nasab
Ali Nasab
Alireza Nasab
Alireza Shafie
Alex Ferguson
Duran Schuur

DOB:
February 21, 1985

Country:
Iran

National ID No.:
14009946460 (Iran)

Reason for the color:
» Added to the Specially Designated Nationals (SDN) list maintained by the U.S. Department of the Treasury’s Office of Foreign Assets Control (OFAC) on April 23, 2024 pursuant to Executive Order 13224, as amended, for having acted or purported to act for or on behalf of, directly or indirectly, the IRGC-CEC;g