Israeli Group Claims Lebanon Water Hack as CISA Reiterates Warning on Simple ICS Attacks

September 26, 2024 at 07:55AM The US cybersecurity agency CISA warns of unsophisticated hacks on industrial control systems (ICS) and operational technology. Red Evil hacktivist group claimed to have compromised water systems used by Hezbollah, making exaggerated claims of control. However, an expert believes this is more likely an influence/misinformation operation. CISA also issued a … Read more

Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks

September 21, 2024 at 11:37AM The hacktivist group Twelve has been observed conducting destructive cyber attacks against Russian targets. They encrypt victims’ data and destroy infrastructure, causing maximum damage without financial gain. The group, linked to the Russo-Ukrainian war, utilizes various tools and tactics, sharing similarities with the ransomware group DARKSTAR. Their attacks involve exploiting … Read more

Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus

September 3, 2024 at 09:54AM Head Mare, a hacktivist group active since 2023, targets organizations in Russia and Belarus using advanced methods. Exploiting a recent WinRAR vulnerability, the group conceals and delivers malicious payloads effectively. It employs ransomware like LockBit and Babuk, with tools such as PhantomDL and PhantomCore, and is linked to the Russo-Ukrainian … Read more

Pro-Palestinian Actor Levels 6-Day DDoS Attack on UAE Bank

July 25, 2024 at 01:02AM A recent distributed denial-of-service (DDoS) attack on a UAE financial institution, attributed to the pro-Palestinian hacktivist group BlackMeta, set records for its duration and volume. Lasting six days with 4.5 million requests per second, the attack marks a shift from standard hacktivist attacks. The group has also targeted organizations in … Read more

US sanctions Russian hacktivists who breached water facilities

July 22, 2024 at 02:23PM The US government imposed sanctions on two Russian cybercriminals, Yuliya Vladimirovna Pankratova and Denis Olegovich Degtyarenko, for cyberattacks on critical infrastructure. Pankratova leads the hacktivist group Cyber Army of Russia Reborn (CARR), while Degtyarenko is the primary hacker. CARR targeted industrial systems at critical infrastructure sites in the US and … Read more

US Sanctions Russian Hacktivists for Targeting Critical Infrastructure

July 22, 2024 at 10:36AM The US Department of Treasury imposed sanctions on Yuliya Vladimirovna Pankratova and Denis Olegovich Degtyarenko, leaders of the Russian hacktivist group CARR, for cyberattacks targeting critical infrastructure in the US and Europe. CARR’s activities, including compromising industrial control systems, have led to significant security concerns, resulting in sanctions and asset … Read more

Rural Texas Towns Report Cyberattacks That Caused One Water System to Overflow

April 22, 2024 at 09:33AM Shadowy Russian hacktivist group linked to cyberattack on Texas water system. Attempts reported in three small towns. Local officials claim public was not in danger. Cybersecurity firm links attack to Russian group with potential military ties. FBI and Homeland Security involved. Other foreign cyberattacks on U.S. water facilities also mentioned. … Read more

Russian Sandworm hackers pose as hacktivists in water utility breaches

April 17, 2024 at 01:13PM Russian military intelligence-linked group Sandworm, also known as APT44, has been conducting cyber attacks by posing as hacktivist groups on multiple Telegram channels. The group employs various methods, including phishing and supply-chain compromise, to target Ukraine and other countries, with potential plans to interfere in national elections. Sandworm has transitioned … Read more

Alabama Under DDoS Cyberattack by Russian-Backed Hacktivists

March 14, 2024 at 03:58PM The hacktivist group Anonymous Sudan has claimed responsibility for a cyberattack that caused disruption to the Alabama state government earlier this week. Based on the meeting notes, it appears that the hacktivist group Anonymous Sudan has claimed credit for a cyberattack that disrupted the Alabama state government earlier this week. … Read more

Iran and Hezbollah Hackers Launch Attacks to Influence Israel-Hamas Narrative

February 20, 2024 at 01:27AM Iran and Hezbollah-backed hackers launched cyber attacks to undermine support for the Israel-Hamas war in October 2023, including destructive attacks, hack-and-leak operations, phishing campaigns, and information operations. The attacks were executed independently of physical actions, with groups like GREATRIFT and Charming Kitten targeting Israel, and Hamas-linked actors targeting Israeli engineers. … Read more