Security outfit Comodo announced that a number of SSL certificates were issued fraudently in a hack that sought to implement fake versions of Google's Gmail, Skype and others.
"While the involvement of two IP addresses assigned to Iranian ISPs is suggestive of an origin, this may be the result of an attacker attempting to lay a false trail," the firm posted on Comodo IT Security blog.
The firm went further to suggest that the hack attempt may amount to state-sponsored hacking.
"It does not escape notice that the domains targeted would be of greatest use to a government attempting surveillance of Internet use by dissident groups."
The certificates have since been revoked at which point the server in Iran went offline.
"Government attacks against social networking sites are not a new phenomenon," said Comodo.