Wednesday, August 27 | 1 PM ET | 8 PM IDT
Presented by Ari Ben Am a Senior OSINT Analyst at Falkor | Co-Founder and CEO of Telemetry Data Labs
Moderated by Matteo Tomasini the Founder & CEO of District 4 Labs
Cyber operations are a central feature of modern conflict with breached data serving both as a national security threat and a window into adversarial strategy. This session explores how compromised PII from Darkside with the investigative platform Falkor can illuminate the operational footprint of key actors within Iran’s cyber command structure.
Focusing on one of the principal operators tied to the Iranian COBALT MIRAGE threat actor network, this investigation draws on leaked datasets from Iranian banks such as Mellat, Melli, and Saderat to surface new insights into covert communication networks, financial infrastructure, and strategic coordination efforts. The session also reveals previously hidden Telegram channels linked to figures within the inner circle of Iran’s Supreme Leader and outlines how these digital assets intersect with Iranian intelligence.
Key takeaways include:
- Identification of a central COBALT MIRAGE operator with connections to Iranian intelligence services
- Analysis of digital infrastructure and coordination methods used by state-backed cyber units
- Discovery of concealed Telegram networks tied to high-level regime figures
- Traces of front companies linked to Iranian and foreign threat actors
As cyber warfare continues to evolve, this session highlights the tools and techniques used to investigate complex cyber actors, showing how breached data and investigative platforms are reshaping open-source intelligence. Attendees will also have the opportunity to explore data from Darkside within Falkor’s platform and see how it can be applied to their own DarkINT investigative workflows.
Ari Ben Am is a Senior OSINT Analyst at Falkor, focusing on cyber threat intelligence and influence operations. He is the co-founder of Telemetry Data Labs, a Telegram data analytics and investigation platform. As a an open-source intelligence analyst by trade, he writes independently at Memeticwarfare.io. He is also an adjunct fellow at the FDD’s Center on Cyber and Technology Innovation, where he researches emerging threats, cyber operations, and hybrid warfare. Ari holds a dual B.A. in East Asian and Middle Eastern Studies from Tel Aviv University.
.jpg)
Matteo Tomasini is the Founder and CEO of District 4 Labs. He served as the Managing Director and Cyber Practice Lead at Prescient, a global risk management and intelligence firm. He has previously held key roles, including Director of Incident Response and Threat Intelligence at BlueVoyant and senior practitioner at K2 Intelligence. With expertise in Deep and Dark Web investigations, social media intelligence, online threat monitoring, threat attribution, and complex cyber investigations, Matteo also develops cutting-edge tools and technologies to enhance these areas of work.
