A bundle of tools and target information belonging to the crew, dubbed OilRig, were thrown up on the web for all and sundry to see, marking the most significant leak of Iran's cyber weaponry to date. Forbes detailed OilRig’s early operations in February 2017, when it compromised a small American software company as a platform to attack other targets. The leak landed a month after a hacker with the user handle Mr_L4nnist3r claimed to have access to a trove of OilRig files. Also included in the leak were a number of backdoor tools used to gain persistent access to target networks. MisterCh0c told Forbes shortly after the leak that he’d spoken with the leaker and they’d claimed to have access to 40 gigabytes of OilRig files and wanted to sell them for $30,000. OilRig hackers, believed to be sponsored by the Iranian government, have broken into many organizations, with the UAE and Saudi Arabia two of the group's favourite targets.