Pakistani Hackers Target Thousands of Israeli Websites in Support of Palestine

August 14, 2013

A widespread cyber attack is currently underway, with thousands of Israeli websites being compromised by Pakistani hackers in solidarity with the Palestinian people. Reports indicate that around 650 Israeli websites have already been infiltrated, with the hackers posting their messages on these sites. One hacker, known by the alias “H4x0r HuSsY,” communicated with The Hacker News to announce upcoming releases of additional hacked websites. The attacker’s message included slogans such as “LONG LIVE PALESTINE – PAKISTAN ZINDABAD HAPPY INDEPENDENCE DAY TO & FROM TEAM MADLEETS.”

The affected sites include semi-government, personal, and corporate Israeli domains. At the time of this report, many of these websites continue to display defaced pages. This cyber offensive follows a recent declaration of a “cyber war” on Israel by global hacker collectives, including the Anonymous group, after the Israeli Defense Forces threatened to cut off internet access in Gaza.

Cyber Attack on Israeli Websites Orchestrated by Pakistani Hackers in Support of Palestine

August 14, 2013

A significant cyber offensive has unfolded as Pakistani hackers target thousands of Israeli websites in a demonstration of solidarity with the Palestinian people. According to reports, the attackers have already compromised approximately 650 Israeli websites, announcing their actions on Pastebin and replacing the original content with personalized messages.

Identifying themselves as part of a group known as “Team Madleets,” the hacker operating under the alias “H4x0r HuSsY” stated that they plan to publish an updated list of the hacked sites in the near future. A prominent message from the hackers reads, “LONG LIVE PALESTINE – PAKISTAN ZINDABAD HAPPY INDEPENDENCE DAY TO & FROM TEAM MADLEETS.” The targeted websites encompass a range of entities, including semi-governmental organizations, personal sites, and corporations operating within Israel.

As of the latest updates, many of the compromised websites continue to display the defacement pages uploaded by the attackers. This incident highlights a larger trend of cyber warfare, particularly following recent escalations in geopolitical tensions. Just months prior to this attack, various hacker collectives, including the notorious Anonymous group, had declared a “cyber war” against Israel in response to threats made by the Israel Defense Forces (IDF) to disrupt internet access in Gaza.

From a cybersecurity perspective, the tactics employed in this operation could align with several frameworks outlined in the MITRE ATT&CK Matrix. Analyzing the attack reveals potential initial access methods such as phishing or exploiting web application vulnerabilities. The attackers may have utilized persistence techniques to maintain control over the compromised systems, ensuring that their disruptive presence remains intact even after initial disturbances.

Privilege escalation could also be relevant, allowing attackers to gain higher-level access to systems, although specific details on the methodologies remain undisclosed. The lack of clarity surrounding the exact tools and techniques used in this particular campaign leaves room for speculation regarding the cyber hygiene and defenses employed by the targeted organizations.

As cyber threats continue to evolve, incidents like this reinforce the need for robust security measures and proactive risk management strategies among businesses. For business owners, particularly in the tech and corporate sectors, understanding the dynamics of such attacks is crucial for safeguarding against potential vulnerabilities and mitigating risks associated with cyber warfare. The ramifications of this cyber offensive serve as a reminder of the interconnectedness of digital security, geopolitics, and the increasingly complex landscape of modern cybersecurity threats.

Source link

Related Posts

Chinese Hackers Exposed by U.S. Water Control System Decoy

August 5, 2013

A notorious hacking group from China, known as APT1 or Comment Crew, potentially affiliated with the Chinese military, has been caught infiltrating a simulated United States water control system, also referred to as a honeypot. Kyle Wilhoit, a researcher from Trend Micro, disclosed the findings at the BlackHat Conference this past Wednesday.

Back in December, the hackers targeted a water control system for a U.S. municipality, unaware it was a ruse set up by Wilhoit. The decoy utilized a Word document embedded with malicious software, allowing for complete access.

These honeypots closely resembled the ICS/SCADA devices employed in critical infrastructure for power and water facilities. The setup, which employed cloud software, produced realistic web-based login and configuration screens for local water plants, making them look as though they were based in various countries, including Ireland, Russia, Singapore, China, Japan, Australia, Brazil, and the U.S. Researchers have traced the activity back to the APT1 Group, which was previously linked to by the security firm Mandiant.

FBI Collaborated with Anonymous and LulzSec Hackers to Target Foreign Governments

August 28, 2013

Sentencing for former LulzSec leader Hector Xavier Monsegur, also known as “Sabu,” has been postponed again. Monsegur, who pleaded guilty to multiple criminal charges two years ago, faces a maximum sentence exceeding 124 years. Additionally, fellow LulzSec hacker Jeremy Hammond has alleged that the FBI utilized Sabu to orchestrate attacks against foreign governments, leveraging the efforts of Anonymous and other hackers.

The ongoing delays suggest that the FBI may not be fully extracting information from Monsegur, hinting at the possibility that he is assisting with other covert operations as claimed by Hammond. In a recent statement, Hammond accused the U.S. government of directing Monsegur to motivate fellow hacktivists to breach foreign government entities. “What many don’t realize is that Sabu was also used by his handlers to orchestrate hacking activities targeting government-selected entities, including multiple foreign government websites,” Hammond stated.

Zero-Day Exploit in Internet Explorer Used for Targeted Watering Hole Attacks on Japanese Users

Sep 24, 2013

Attackers are leveraging a zero-day vulnerability, CVE-2013-3893, in Microsoft’s Internet Explorer browser to target Japanese users through compromised popular news websites. According to FireEye, at least three major Japanese media outlets fell victim to these watering hole attacks, part of an operation dubbed “DeputyDog,” which appears to focus on manufacturers, government entities, and media organizations within Japan. The compromised sites experienced over 75,000 page views before the exploits were detected. This vulnerability in Internet Explorer versions 8 and 9 enables the covert installation of malware on users’ devices, granting hackers remote access. Typically, these attackers deploy Trojans tailored for targeted operations aimed at stealing intellectual property. Researchers identified a payload disguised as an image file hosted on a Hong Kong server that was used against a Japanese target. The attacks were uncovered just two days after Microsoft disclosed the vulnerability.