Particle.news
Download on the App Store
11 ARTICLES
·
yesterday

U.S. Seizes Four MOIS-Linked Domains, Officially Tying Handala to Iran

The move publicly links the Handala persona to Iran’s intelligence service for the first time.

An FBI seal is displayed on a podium before a news conference at the field office in Portland, Ore., Thursday, Jan. 16, 2025. (AP Photo/Jenny Kane)
Iranian men shout anti-U.S. and anti-Israeli slogans in front of a portrait of Iran's new Supreme Leader, Ayatollah Mojtaba Khamenei, the son of the late Leader Ayatollah Ali Khamenei, during a rally to pledge allegiance to Mojtaba Khamenei amid the U.S.-Israeli military campaign in Tehran, Iran, on March 9, 2026. (Photo by Morteza Nikoubazl/NurPhoto via Getty Images)
Image
The Justice Department removed websites it says has been used to share propaganda.

Overview

  • The Justice Department and FBI took down Justicehomeland.org, Handala-Hack.to, Karmabelow80.org, and Handala-Redwanted.to, which now display federal seizure notices.
  • Court filings attribute the sites to Iran’s Ministry of Intelligence and Security, describing a 'faketivist' campaign that claimed hacks, leaked stolen data, and urged killings of journalists, dissidents, and Israelis.
  • Investigators say Handala used the network to post sensitive personal data for roughly 190 individuals tied to the Israeli government or IDF, accompanied by threats.
  • The operation claimed a March 11 destructive malware attack on a U.S. medical technology firm, widely reported as Stryker, and linked emails offered a $250,000 bounty while invoking the CJNG cartel.
  • FBI Baltimore and DOJ national security prosecutors are pursuing the case, the State Department posted a reward of up to $10 million, and Handala has begun reestablishing online channels after the seizures.