Iran’s cyberwar on American banks
Marketplace Tech
Marketplace
4.5 • 1.3K Ratings
🗓️ 5 March 2026
⏱️ 9 minutes
🧾️ Download transcript
Summary
As the war in the Middle East intensifies, one risk facing American banks is the possibility of cyber attacks by hackers linked to Iran.
There is some historical precedent for this: from late 2011 to mid-2013, nearly 50 financial institutions in the U.S. were attacked repeatedly by a group of hackers aligned with the Iranian government. The attacks disabled bank websites and prevented customers from accessing their accounts.
Marketplace’s Stephanie Hughes spoke with Rafe Pilling, Director of Threat Intelligence with the cybersecurity firm Sophos about what those attacks looked like and whether banks are better equipped to fend off those attacks now.
Transcript
Click on a timestamp to play from that location
| 0:00.0 | A look at the history of cyber attacks from Iran on the banking system. |
| 0:05.0 | From American Public Media, this is Marketplace Tech. I'm Stephanie Hughes. |
| 0:09.0 | As the war in the Middle East intensifies, one risk facing American banks is the possibility of cyber attacks by hackers linked to Iran. |
| 0:26.7 | There is some historical precedent for this. From late 2011 to mid-2013, nearly 50 financial institutions in the U.S. were attacked repeatedly by a group of hackers aligned with the Iranian government. The attacks disabled bank websites and prevented customers from accessing their accounts. |
| 0:43.1 | Rafe Pilling with the cybersecurity firm Sophos describes what those attacks look like. |
| 0:47.8 | They were distributed denial of service attacks. So they had infected, compromised a large number of computers on the internet, and we're using the combined power of those computers to make a large volume of requests to specific banking websites at a specific time in order to overwhelm those banking servers and make them unavailable to the bank's customers. |
| 1:12.6 | What happened? Were they overwhelmed? At the time, it was intermittent. They were able to |
| 1:19.5 | muster a significant volume of traffic, certainly for the time. There was a degree of disruption |
| 1:27.3 | for these financial services organizations. |
| 1:31.1 | They were certainly very concerned about it, concerned about how it looked, how was perceived |
| 1:34.9 | by their customers, and disruption to deliver their services to their customers, as you |
| 1:39.0 | would expect. |
| 1:40.3 | Yeah. |
| 1:40.8 | How did it affect customers, if you know? |
| 1:42.7 | So the main issue was the unavailability of websites, retail banking sites, business banking sites, at particular point when these denial of service attacks were going on. |
| 1:53.6 | And there are things that organizations can do. They can try and filter the income and volume of requests, |
| 2:00.7 | recognize the nature of the malicious traffic |
| 2:02.9 | and try and sift it out from legitimate traffic from users. |
| 2:07.1 | And this is sort of an ongoing battle that was happening at the time to try and mitigate |
| 2:10.8 | the impact of these attacks. |
| 2:13.1 | The attacks we were talking about, they started more than a decade ago, which is basically a lifetime in tech time. |
| 2:21.7 | How have cyber warfare capabilities in Iran evolved since then? |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from Marketplace, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of Marketplace and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.