Now published through @CarnegieEndow – "Iran’s Cyber Threat: Espionage, Sabotage, and Revenge" – the decade long history of Iranian cyber operations against foreign and domestic targets. By me and @ksadjadpour.

📢My first essay for @just_security is out! CISA 2015, the backbone of U.S. cyber defense, expires Sept 30. Renewal isn’t housekeeping; it’s a strategic choice in an era of great-power competition & AI-driven cyber threats. 👉 https://t.co/vhLZxO0GvI

What in the heck, @ride_empower — political endorsements in notifications?

Looks like internet access in Iran has been restored, at least to a basic degree for some providers.

Good lord, after two decades, is Iran's internet still: Broadband/National Networks <-> Telecommunication Infrastructure Company <-> Rest of the World, with most of the strangest dark arts and interference happening in AS49666?

Waited a decade to hold this over the Discogs nerds.

Missed that Lloyd Miller passed in December. Mormon missionary found his way to Iran, started a Jazz show as Kurosh Ali Khan, attempted to smuggle arms to resist the Russian invasion of Afghanistan. What a life. This Gol-e Gandom version is a banger. https://t.co/SZt4yspm6J

https://t.co/eup5ZM71T8

To this day, the Democratic Party of North Dakota is called The Democratic Party-Nonpartisan League of North Dakota, or DP-NPL. Do you know why? https://t.co/XQJFqN6g5V

@elonmusk @S3XYstarship @slashdot @JusticeATR Open App Markets Act!

After being sanctioned by US #SahabPardaz one of Islamic Republic’s regime’s key players in internet censorship, shutdowns & surveillance is now threatening legal action against anyone who criticises them on social media. Many digital rights activists remain in Evin. #MahsaAmini

Basically how internet policy works now.

Pretty sure this is the first time a company had ever been sanctioned after accidentally leaving an NFS server open to the public.

!!! Sahab Pardiz was just sanctioned by US OFAC for facilitating Iranian internet censorship, same claims as my tweets !!! #MahsaAmini #OpIran

🛑رژیم بعد از دستگیری روی موبایل Android یک برنامه کنترل گوشی از راه دور نصب میکنند به اسم L3MON و اسم پکیج com.etechd.l3mon است سرور این برنامه در آلمان هست و ما این سرور را به زودی مسدود خواهیم کرد. حتما اطلاع رسانی کنید. دوستانی که مشکل داشتند گوشی خود را فرمت کنند. #OpIran

Engineers from Dnipro, involved in Dovbush UAV production, disassembled the Iranian kamikaze drone, captured by Ukraine, and found an ALTERA/INTEL chip on the central processor made in the US.

I’ll stop here for now. tldr; Iran was clearly ready for this moment to disconnect, but it was still surprisingly a scattershot/broken approach. But, it worked. I’ll also note that much of this has also been covered by the great folks: @OpenObservatory @gatech_ioda @DougMadory

For everyone else, the VPN providers are essentially fighting a dozen fires. Each ISP is in their own unique way breaking some fundamental part of the internet (DNS, routing, TCP connectivity). And then, when you figure that out, the TCI will step in and cut everything off.

In Kurdistan or Sistan and Baluchestan, there's no options. Either residents need to find an office place with connectivity, but it's probable that those blackouts are more complete. And, Starlink is not going to get to either place anytime soon.

The net effect is that for those on Rightel during the curfew anti-filtering tools will not work. The only way out is to tunnel traffic through web hosting companies inside Iran, which is risky because hosting companies generally require national ID cards and bank accounts.