Iranians Receive Mysterious 'Help Has Arrived' Push Notifications During US-Israel Strikes
Iranians Get 'Help Has Arrived' Notifications During Strikes

Iranians Receive Mysterious 'Help Has Arrived' Push Notifications During US-Israel Strikes

In a startling development early Saturday morning, a wave of cyber-enabled operations unfolded concurrently with the joint US-Israeli military assault on targets across Iran. Minutes after the initial explosions, Iranian citizens reportedly began receiving a barrage of notifications on their mobile devices. These messages did not originate from government authorities issuing safety advisories but were instead dispatched through the widely used prayer timing application known as 'BadeSaba Calendar'.

App-Based Psychological Warfare

The BadeSaba Calendar app boasts over 5 million downloads on the Google Play Store within Iran. According to a detailed report from WIRED, which reviewed the messages, the notifications commenced at 9:52 am Tehran time with the opening phrase 'Help Has Arrived'. Over a concentrated 30-minute period, users received a series of push notifications all titled 'Help is on the way' and composed entirely in the Farsi language.

Screenshots obtained by WIRED Middle East reveal messages explicitly urging Iranian military personnel to surrender their weapons with guarantees of amnesty. The communications also encouraged soldiers to align with 'the forces of liberation' and to 'defend your brothers'. A subsequent notification delivered at 10:02 AM declared, 'The time for revenge has come. The regime's repressive forces will pay for their cruel and merciless actions against the innocent people of Iran. Anyone who joins in defending and protecting the Iranian nation will be granted amnesty and forgiveness.'

Source of the Hack Remains Unknown

Cybersecurity analysts have verified to WIRED that users of the Bade Sabah application indeed received these notifications around the precise time of the military strikes. However, investigators have been unable to definitively identify the perpetrators behind this sophisticated cyber intrusion. Narges Keshavarznia, a digital rights researcher at the Miaan Group, stated, 'At this point, we genuinely do not know who is behind them, whether it was Israel or other anti-government Iranian groups.' To date, no organization has publicly claimed responsibility for these cyber operations.

Widespread Internet Disruption and Coordinated Cyber Attacks

Simultaneously, internet connectivity across Iran experienced severe disruptions. According to Reuters, significant outages occurred at 0706 GMT and again at 1147 GMT, leaving only minimal connectivity operational. Doug Madory, Director of Internet Analysis at Kentik, confirmed these disruptions in a social media post. Media reports further indicated that cyber operations targeted a variety of Iranian government services and military infrastructure, aiming to limit a coordinated national response.

Rafe Pilling, Director of Threat Intelligence at cybersecurity firm Sophos, told Reuters, 'As Iran considers its options, the likelihood increases that proxy groups and hacktivists may take action, including cyberattacks, against Israeli and U.S.-affiliated military, commercial, or civilian targets.'

Escalating Cyber Activity in the Region

A former senior FBI cyber official, now serving as Senior Vice President at anti-ransomware company Halcyon, noted a marked increase in hacker activity within the Middle East. His firm has observed calls to action from known pro-Iranian cyber personas who have historically executed hack-and-leak operations, ransomware attacks, and distributed denial-of-service (DDoS) campaigns.

Interestingly, the report highlights that while American cyber officials frequently categorize Iran alongside Russia and China as significant threats to US networks, Tehran's recent responses to attacks on its territory have been notably restrained. For instance, following US strikes on Iranian nuclear targets in June, there was little evidence of the disruptive cyber counterattacks many anticipated.

This incident underscores the evolving landscape of modern conflict, where psychological operations via popular applications and coordinated cyber disruptions are deployed in tandem with conventional military strikes, creating a multifaceted assault on a nation's infrastructure and morale.