Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Collin Anderson Profile picture
Collin Anderson
@CDA
Researcher on Internet infrastructure, state-sponsored hacking, sanctions, human rights, and authoritarianism; 'Blonde guy, talks about Iran a lot.'(ملا لغتی)
Oct 5, 2022 8 tweets 6 min read
There has been significant attention to Iran's internet blackouts.

Time to dig into what's happening inside Iran, and whether outsiders can help. What I found was surprisingly chaotic, nightmarish.

An ongoing thread. #MahsaAmini #IranProtests2022 #مهسا_امینی #OpIran #KeepitOn Overall, as many have noted, Iran has essentially been under an Internet curfew since September 21 (until possibly yesterday).

Every afternoon around 4pm local time until midnight, traffic from Iran would drop precipitously, across the board.

Image
Dec 21, 2017 6 tweets 2 min read
(Thread) Never going to be able to do anything with this, so here's a free research lead: in 2016, when sinkholing the Infy malware, I noticed an IP prefix would repeat beacons from Iran a few days after. Someone was parroting Iranian malware infected communications. This was interesting because the beacons came from a diverse set of ASs, which means the actor had a lot of records of Iranian Internet traffic.