United States | Hackmageddon.com

1-15 March 2013 Cyber Attacks Timeline

March 18, 2013 Paolo Passeri 2 comments

Other troubles for system administrators: March is confirming the 2013 dangerous trend with several high profile breaches against industrial, financial and governmental targets.

The first two weeks of March have begun with the breach to Evernote, and continued with (among the others) the third phase of the infamous Operation Ababil, targeting U.S. Banks and an alleged Chinese attack against the Reserve Bank of Australia.

Additional noticeable events include a wave of DDoS attacks against several Czech Republic’s targets (belonging to media, news and financial sector), a breach suffered by the NIST Vulnerability Database (unfortunately not an isolated example of the attacks against US governmental targets happened in these two weeks) and also the leak of 20,000 records from an Avast! German distributor.

Last but not least, the examined period has also confirmed the role of Twitter as the new mean to make resounding attacks against single individuals or organizations. Qatar Foundation, Saudi Aramco, and France 24 are only several of the organizations fallen victims of accounts hijacking.

Of course, these are only the main events, feel free to scroll down the list to analyze in detail what happened in these two weeks.

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011, 2012 and now 2013 (regularly updated). You may also want to have a look at the Cyber Attack Statistics, and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Once again, a special thanks to Kim Guldberg AKA @bufferzone for continuously advising me about significant cyber events through the Submit Form! Much Appreciated!

About these ads

Categories: Cyber Attacks Timeline, Security Tags: #OpIran, 2013, @dw_arabic, @France24_ar, @NullCrew_FTS, @observateurs, @Phr0zenM, @StateSecurityRS, @T3AMM3DU5A, aio.ir, Alladyn2, AngloAmerican, angloplatinum.co.za, angloplatinum.com, Anonymous, Anonymous Italy, Anonymous Philippines, Arnold Schwarzenegger, Ashton Kutcher, Australia, avadas.de, Avast!, Bank of America, BB&T, BCPP, Belgrade, Beyoncé, Bill Gates, Billboard, Bitcoin, BitInstant, Britney Spears, Casapounditalia.org, Ceskatelevize.cz, Chase Bank, Chevron Corporation, chevron.com, China, Colin Poweel, Colin Powell, Constantin Film, cpb.gov, csas.cz, CSOB, csob.cz, Ct24.cz, Cyber Attacks Timeline, Cypher, Czech Republic, denik.cz, Deutsche Welle, Donald Trump, Dpp.cz, drdo.gov.in, E15.cz, Equifax, eri.ir, Evernote, Experian, Facebook, Fifth Third Bank, Fio Banka, fio.cz, France 24 Arabia, France 24 observers, G.O.D., g1arng.army.pentagon.mil, Godzilla, Government, Hacker sTz, herzliyaconference.org, Hillary Clinton, HMP Isis, HSBC, Hulk Hogan, ical.ir, ict.org.il, idnes.cz, ihned.cz, India, Iran, isi.org.pk, Izz ad-Din al Qassam Cyber Fighters, Jay Z, Joe Biden, JPMorgan Chase & Co, karjera.ktu.lt, kb.cz, Kim Kardashian, Komerční Banka, ktu, lidovky.cz, majlis.ir, March, Maxney, Mel Gibson, Michelle Obama, mobilmania.cz, nationaljournal.com, natpdae.gov.bd, nespak.com.pk, Nicholas Webber, NIST, North Korea, novinky.cz, NullCrew, nvd.nist.gov, O2.cz, Oceaneering International, OpBlackSummer. Tunisian Cyber Army Al Qaida Electronic Army, Operation Ababil, Operation Green Rights, OpFuckMohammad, opm.gov, PAKbugs, Pakistan, Paris Hilton, Phr0zenMyst, PNC, Poland, Prague Stock Exchange, Pyongyang, Qatar Foundation, Raiffeisen Bank, Rasberry P, rb.cz, RBA, Reserve Bank of Australia, Robert Mueller, Sarah Palin, Saudi Aramco, seznam.cz, Soneri Bank, South Africa, South Korea, state.gov, supremecourt.gov.bd, Syrian Electronic Army, T-Mobile, T-mobile.cz, TEAM M3DU5A, th3inf1d3l, timewarnercable.com, TransUnion, Twitter, United States, US Bank, Watering Hole Attack, XSS, Zoosk, Živě.cz, Česká spořitelna

1-16 February 2013 Cyber Attacks Timeline

February 18, 2013 Paolo Passeri 3 comments

Here is the summary of the Cyber Attacks Timeline for February. A month that will probably be remembered for the “sophisticated” cyber attacks to the two main social networks: Facebook and Twitter.

But the attacks against the two major social networks were not the only remarkable events of this period. Other governmental and industrial high-profile targets have fallen under the blows of (state-sponsored) cyber criminals: the list of the governmental targets is led by the U.S. Department of Energy and the Japan Ministry of Foreign Affairs, while Bit9, a primary security firm, was also targeted, leading the chart of Industrial targets.

Hacktivists have raised the bar and breached the Federal Reserve, leaking the details of 4,000 U.S. Banks executives. Similarly, the Bush family was also targeted, suffering the leak of private emails.

Even if the list is not as long as the one of January, it includes other important targets, so, scroll it down to have an idea of how fragile our data are inside the cyberspace. Also have a look at the timelines of the main Cyber Attacks in 2011, 2012, 2013, and the related statistics (regularly updated), and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Cyber Attacks Timeline, Security Tags: 2013, @AnonVoldemort, @Maxn3y, @ThisIsGame0ver, @TN_cyberarmy, acjic.alabama.gov, afse.fr, Al Qaida Electronic Cyber Army, Alabama, AlienVault, Anonymous, archicubes.ens.fr, bahamasdevelopmentbank.com, bankcap.com, Bashas, bcc.lu, Bit9, Bochum, Bush, Business Wire, cats2go.co.nz, Cayman Islands, centralbnk.com, Chile, China, Computer Virus, Cryptome, Cyber Attack Timeline, D35M0ND142, DNS Hijacking, Drone, Facebook, February, Federal Reserve, Foxconn, France, Froedtert Hospital, Geo TV, Gmail, Google, gortons.com, Great Falls, Guccifer, Haaretz, haaretz.com, Hacktivism, Iran, Japan, job.sy, JokerCracker, Kaspersky Lab, KRTV, LAPD, LAPDonline.org, loophole4all.com, Los Angeles Police Department, Los Angeles Times, Maxney, mofa.go.jp, Montana, mot.gov.il, muslimnews.co.uk, Myanmar, nbbl.com.np, ncr-iran.org, Netseer, Nokia, Nuri al-Maliki, opBankUnderAttack, OPBenLadenRevange, OpEgypt, OpFuckMohammad, OpKashmir, OpMali, PAKbugs, Pakistan, Paolo Cirio, pashupatibank.com, pknic.net.pk, pmo.iq, Pympy, Pympy.com, redsalud.gov.cl, Ruhr University, RuXpIn, SaBu ~KrYoGeNiKs, Sky News Arabia, Syrian Electronic Army, Taiwan, Talk Fusion, TeaM KuWaiT HaCkErS, th3inf1d3l, thefriendlyank.com, TunisianCyberArmy1, TurkishAjan Group, Twitter, U.S. Department Of Energy, Union Count Public School, United States, USA, Uyghur, Visa, Walla!, walla.co.il, Watering Hole Attack, ZCompany Hacking Crew, Zombie

16-31 January 2013 Cyber Attacks Timeline

February 7, 2013 Paolo Passeri 1 comment

Two Weeks Living Dangerously! I have no other words to describe this second half of January (first two weeks here) that has shown an unprecedented level of attacks! And if a good day starts with the morning, this will be a very troubled year from an information security perspective.

Not only the peaks of DDoS attacks against the US Banks have reached an unstoppable peak, but, most of all, at the end of the month details have been unveiled about a massive cyber-espionage campaign allegedly orchestrated by Chinese hackers against some major US media including The New York Times, The Wall Street Journal, The Washington Post and Bloomberg News.

A very very long list of targets this month, with some high profile victims such as the U.S. Sentencing Commission, whose web site has been hacked twice and turned into an Asteroid game, but also Renault Argentina that suffered 37,000 accounts leaked.

To summarize this month is really impossible, you just have to scroll down the timeline to realize the hacking spree in this January 2013.

If this trend continues, I will have to decrease the frequency of publication…

If you want to have an idea of how fragile our data are inside the cyberspace, have a look at the timelines of the main Cyber Attacks in 2011 and 2012 and the related statistics (regularly updated), and follow @paulsparrows on Twitter for the latest updates.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Cyber Attacks Timeline, Security Tags: #FuckTheSystem, #OpLastResort, #OpLeak, #opphillippine, #OpScientology, #TeamGhostShell, 2013, @AnonSquadNo035, @AnonymousMexi, @DarkWebGoons, @irBreShiE, @LulzSecNeuron, @nrtnz, @RexMundi_Anon, @TheLulzWarrior, @TheNeoGod, @ThisIsGameOver, @TN_cyberarmy, @XTnR3v0LT, Aaron Swartz, Africa, Anonymous, Anonymous Mexico, AnonymousSquadNo.035, Argentina, Asteroids, Australia, Azerbaijan, ℕrtn___z, babycareadvice.com, Bank of America, Bank Of The West, bankcapitalinventory.com, BB&T, BBVA, Bloomberg News, Bloomberg Television, BreShiE, Britam Defence, britamdefence.com, buyway.be, cabinet.gov.eg, caci.dz, Canada, Capital One, cci.fr, China, Citibank, Citizens Bank, Comerica, construction.com, Cyber Attacks, Cyber Attacks Timeline, D35M0ND142, Davy Jones, Denial-of-service attack, Digicel Jamaica, dmx.gov.az, DNS Poisoning, Egypt, egyptiancabinet.gov.eg, Egyptological, eportal.adu.ac.ae, eproc.dor.gov.np, ESA, ezycoupons.co.nz, Fédération des Mutuelles de France, Fifth Third Bank, First Citizens Bank, First United Church, Game Over, GhostShell, Github, gorele.gen.tr, Gray Lady, handsontheland.org, Harris Bank, Harvard, Huntington Bank, Ic3.gov, ied.edu.hk, indec.gov.ar, Indonesia, IonCuber, Iran, Izz ad-Din al Qassam Cyber Fighters, January, JAsIrX, JokerCracker, Key Bank, Ladysmith, library.seas.harvard.edu, M&T Bank, Man-In-The-Middle, McGraw-Hill Construction, Mexico, Michigan, Microsoft, miep.uscourts.gov, MIT, mobilephonetrace.com, moiegypt.gov.eg, moinfo.gov.eg, mutuelles-de-france.fr, Nepal, New York Times, NIC.lk, NIC.tm, NullCrew, OfficialNull, OpEgypt, Operation Ababil 2, Operation Last Resort, OperationEgypt, OpMali, partitodemocraticotrentino.it, Patelco, People’s United Bank, Philippine, PNC, ProjectSunRise, Proximus Security, Regions Financial Corporation, Renault, Reporters Without Borders, Rex Mundi, sasonline.com.ph, Scientology, sedena.gob.mx, Sony, Sony Music, sonymusic.com.mx, Spam, SQL Injection, SQLi, Sri Lanka, Stethoscope.com, sulu.gov.ph, Synovus Bank, tbnnetworks.org, th3inf1d3l, Timeline, TNB, Trinity Broadcasting Network, Tunisian Cyber Army, Turkmenistan, Twitter, U.S. Sentencing Commission, UMB Financial Corporation, Umpqua Bank, UN.org, Union Bank, United Nations, United States, United States Sentencing Commission, University Federal Credit Union, University of New South Wales, University of Western Sidney, University Of Wisconsin, UNSW, usatechguide.org, ussc.gov, Wall Street Journal, Wasatchit Software, Washington Post, Watering Hole Attack, Wells Fargo, Wildan Yani Ashari, Wilton Brands LLC, wisc.edu, XL3gi0n, Xl3gi0n hackers, Zions Bank

The Quassam Group Stops the Cyber Attacks Against US Banks

January 30, 2013 Paolo Passeri 1 comment

Finally it looks like the DDoS attacks against US Banks, carried on by the Izz ad-Din al-Qassam Cyber Fighters in name of the infamous Operation Ababil, have been temporarily suspended. The decision is a consequence of the removal of the controversial video “The innocence of Muslim” from Youtube.

Actually only one copy has been removed (the one which collected more views) and a dozen of copies are still available to visitors. Nevertheless the hacktivists have appreciated this action and have consequently suspended the cyber attacks.

The sudden stop came in the moment of maximum peak: in the last two weeks the wave of DDoS has reached an unprecedented level, with 35 attacks against 25 banks. An apparently unstoppable storm that has dramatically shown the fragility of the system. Here the details of the banks impacted (of course you will find them in the forthcoming Cyber Attack Timeline.

Date	Target	Details
Jan 22		The seventh week of Operation Ababil 2 begins with the following banks taken down: BB&T[i] PNC[ii] Bank Of America[iii] Wells Fargo[iv] Regions Bank[v] Harris Bank[vi] CitiBank[vii]
Jan 23		Other US banks are targeted: Bank Of America; [viii] Zions Bank[ix] Harris Bank[x] PNC[xi] Huntington Bank[xii] Capital One[xiii] Wells Fargo[xiv]
Jan 24		Again, other DDoS attacks against US Banks. The wave is unprecedented and the list of the targets is very long, including: Comerica[xv] Wells Fargo[xvi] PNC[xvii] Bank Of America[xviii] Fifth Third Bank[xix] Key Bank[xx] BBVA[xxi] Citizens Bank[xxii] First Citizens Bank[xxiii] M&T Bank[xxiv] Huntington Bank[xxv] Patelco[xxvi] People’s United Bank[xxvii] UMB Financial Corporation[xxviii] Union Bank[xxix] Umpqua Bank[xxx] Bank Of the West[xxxi] Capital One[xxxii] Zions Bank[xxxiii] Synovus Bank[xxxiv] Federal Credit Union[xxxv]

16-31 December 2012 Cyber Attacks Timeline

January 7, 2013 Paolo Passeri 1 comment

The year is gone, and here it is the last Cyber Attack Timeline for 2012 (first part here).

The most important cyber-events of this second part of December can be considered: the third phase of the operation Ababil carried on by the Izz ad-Din al-Qassam Cyber Fighters against U.S. Banks, the attacks of the Anonymous collective against the Westboro Baptist Church, and, last but not least the Cyberwar echoes coming from Iran.

The wave of DDoS attacks carried on by the Izz ad-Din al-Qassam Cyber Fighters has taken down Six U.S. Banks under the fists of DDoS attacks apparently unstoppable. Instead the Anonymous seem to have changed tactic in their personal fight against the Westboro Baptist Church, they did not limit to DDoS the church’s website, but also performed a couple of Twitter account takeover against some key persons (with the collaboration of UGNazi members).

Instead, on the Cyberwar front, Iran confirms to be a danger zone, with some reports of a new Wiper and a simil-Stuxnet malware (even if this second news has been downplayed in a second moment.

Other noticeable news include an alleged breach to Yahoo!, a massive breach against a Chinese HP domain and a strange, controversial breach against Verizon FiOS (with data apparently leaked six months ago).

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts). To do so, you can use this form.

Categories: Security, Cyber Attacks Timeline Tags: #GameOverDay, 0-Day, 2012, 2012obama.com, @CosmoTheGod, @DearShirley, @dswdserve, @gsec_, @LulzSecPeru, @Maxn3y, @nrtnz, @ThisIsGameOver, @TibitXimer, Account Hijacking, Aiplex, airport.ch, Al-Qaida, alwayson.hp.com.cn, an0nw3bc0d3r, Anonymous, Argentina, Australia, Bank of America, BB&T, Brazil, btflive.net, Bulgaria, Byron Bay Community School, C4ISR, CECOM, Central Intelligence Agency, CFR, cfr.org, China, CIA, Citi, Citigroup, Council on Foreign Relations, cpd.gov.kw, December, Denial-of-service attack, DiabloAnon, ebuyer.com, Egypt, Eletrobras, eln.gov.br, english.stanford.edu, Fred Phelps Jr., Fred Phelps Sr., Game Over, GameOverVirus, Grey Security, Heroes of Newerth, Hewlett Packard, Hormozgan, HP, ihya.org, India, Indian Express, Internet Explorer, Iran, islaam.net, ISNA, Israel, Izz ad-Din al Qassam Cyber Fighters, Jetro/Restaurant Depo, Jigsawhacker, JokerCracker, Kuwait, Lulz Security Peru, mantrackr.com, marvin.com.mx, Maxney, mindef.gov.ar, minfin.bg, mma.gov.br, MPAA, National University of Bangladesh, nu.edu.bd, Obama Must Go!, Operation Ababil, OpFuckMohammad, OpGreenRights, Philippines, PNC, Raj Musicals, rajmusicals.in, Ransomware, Renault, Renault.bg, Shirley Phelps-Roper, SQLi, Stanford, Stuxnet, th3inf1d3l, The Islamic Network, Tibit, Turkish Ajan Hacker Group, Twitter, ucsd.edu, UGNazi, United States, US Army, US Bank, Verizon FiOS, ViruS_HimA, WBC, Wells Fargo, Westboro Baptist Church, Wiper, Xc0unt3r, XL3gi0n, Yhaoo!, Zensis, zensis.com, zunal.com

16-30 November 2012 Cyber Attacks Timeline

December 4, 2012 Paolo Passeri 1 comment

November has gone and it’s time to review this month’s cyber landscape.

From a Cyber Crime perspective, November 2012 will be probably remembered for the breach to Nationwide, one of the largest insurance and financial services providers in the US, a breach that has potentially left up to 1 million users exposed. Unfortunately, in terms of massive breaches, this is not the only remarkable event of the month, just at the end Acer India has suffered a massive cyber attack culminated in the leak of nearly 15,000 records. Not comparable with the breach that affected Nationwide, but for sure of big impact.

Also on the cyber-espionage front this month has been interesting: JAXA, the Japan Space agency has been targeted by yet another targeted attack (after January 2012) and Symantec has discovered W32.Narilam, a new destructive malware targeting several nations in Middle East.

The hacktivist front has been characterized by the dramatic events in Gaza, the attacks have reached a peak around the first half of the month (as in the first part, I did not take into consideration the attacks carried on in name of OpIsrael for which I wrote a dedicated timeline), in any case the Anonymous have found another way to mark this month, leaking 1 Gb of documents from the Syrian Ministry of Foreign Affairs.

Last but not least, this month has seen three large-scale DNS Poisoning attacks (against the Pakistani Registrar PKNIC, Inc., GoDaddy, and the Romanian Registrar). A very rare occurrence!

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

1-15 November 2012 Cyber Attacks Statistics (hackmageddon.com)
Timeline of Opisrael (hackmageddon.com)

Categories: Cyber Attacks Timeline, Security Tags: #OpLeak, 2012, @DARWINWARE, @gsec_, @opindia_revenge, @ur0b0r0x, @XTnR3v0LT, Acer, aldf.org, Animal Legal Defense Fund, AnonOpsIndia, Anonymous, Arenabg, Banega, BitSoup, Blackhole Expoit Kit, Cesc Fàbregas, China, Colombia, Computer crime, Cool EK, Cristian Tello, Cristiano Ronaldo, Cyber Attacks, Cyberwarfare, D35M0ND142, David Navarro, Debka.com, DEBKAfile, DNS Poisoning, Ducat, E.J. Phair brewing Company, Ebay, Fabio Coentrao, First Security Insurance, Flame, France, FreeBSD, Fuel Up to Play 60, fueluptoplay60.com, Game Over AKA @ThisIsGameOver, Gerard Pique, gobhs.ch, GoDaddy, Google, Greenspun Media Group, Grey Security AKA, Hacktivism, IAEA, Iker Casillas, International Atomic Energy Agency, Iran, Japan Aerospace Exploration Agency, JAXA, Johns Hopkins University and Moscow University, Jordi Alba, Kapil Sibal, kapilsibalmp.com, kOS, lasvegassun.com, lasvegasweekly.com, leadenhall-market.co.uk, Liga, Maxney, MCA-CRB, MeTV. metvnetwork.com, Microsoft, Middle East, Minnesota United States Bankruptcy Court, mnb.uscourts.gov, mofa.gov.sy, Mourinho, myWoWArmory.com, Narkop, Nationwide, New York University, NISD, North-side Independent School District, November, OpBigBrother, OpIsrael, OpSyria, Pakistan, Parastoo, PayPal, PCMDI, Pinto, Piwik.org, PKNIC, policija.lt, Roberto Soldado, royalquaysoutlet.co.uk, Secreterìa De Educaciòn Pùblica, sep.gob.mx, SlixMe, SSH, Stanford University, Stanley-Boyd School District, svuonline.org, Symantec, Syria, thaitravelcenter.com, Timeline, Torrent, Twitter, United States, Universidad Veracruzana, uv.mx, vegasdeluxe.com, vegasinc.com, verifi-cctv.com, Vicente del Bosque, Visa, W32.Narilam, World of Warcraft, www-pcmdi.llnl.gov, Yahoo!, YEIZETA, Zacatecas, zacatecas.gob.mx

16-30 September 2012 Cyber Attacks Timeline

October 4, 2012 Paolo Passeri 2 comments

Part One with 1-15 September 201 Timeline Here.

September is over and it’s time to analyze this month from an Information Security perspective with the second part of the Cyber Attack Timeline.

Probably this month will be remembered for the massive outage of six U.S. Banks (Bank of America, JPMorgan Chase, Citigroup, U.S. Bank, Wells Fargo and PNC ) caused by a wave of DDoS attack carried on by alleged Muslim hackers in retaliation for the infamous movie (maybe this term is exaggerated) “The Innocence of Muslims”.

China has confirmed its intense activity inside the Cyber space. Alleged (state-sponsored?) Chinese hackers were allegedly behind the attack to Telvent, whose project files of its core product OASyS SCADA were stolen after a breach, and also behind a thwarted spear-phishing cyber attack against the White House.

Adobe suffered a high-profile breach which caused a build server to be compromised with the consequent theft of a certificate key used to sign two malware strains found on the wild (with the consequent necessary revoke of the compromised key affecting approximately 1,100 files).

Last but not least, the Hacktivism fever has apparently dropped. September has offered some attacks on the wake of the #OpFreeAssange campaign, and a new wave of attacks at the end of the month after the global protests set for September, the 29^th, under the hashtag of #29s.

Also, feel free to submit remarkable incidents that in your opinion deserve to be included in the timelines (and charts).

Categories: Cyber Attacks Timeline, Security Tags: #29S, @DeleteSec, @r0gu3An0n, @RexMundi_Anon, @_s0lar_, Adobe, Afghanistan Hackers, ALZH3R, amchamfrance.org, Anonymous, Asus OpFreeAssange, Attorney, Australia, Bangladesh Cyber Army, Bank of America, bebeauty.com.sg, Bl4k3 Security, BNL, Brazil, BukSus, Canada, Canada OASyS SCADA, China, Citigroup, com.edu, consejo-estado.es, Cyber Espionage, DDoS, Defacement, Dell SecureWorks, Denial-of-service attack, Diaoyu Islands, Distributed Denial Of Service, Donnie Wahlberg, Egypt, fip.org, Foxconn, G.O.D., Godzilla, Golden Dawn, gppeuropeo.eu, Hacktivism, hcsr.gov.sy, hello-hello.com, Hmei7, Iran, Israel, Izz ad-Din al Qassam Cyber Fighters, Japan, jobmarket.com.my, John Cena, John Morrison, JPMorgan Chase, Karachi Stock Exchange, KINOZ95, krystalhost.com.mx, Leak, lincetoyota.com, m0le, Maxney, Mirage, MirageFox, Nigeria, NullCrew Cambridge University, nxm.mx, Pakistan Army, Philippines, phpMyAdmin, PNC, policia.es, pparagon.es, ppzamora.com, psoeguaro.es, PSYCHOLYZERN, RAT, raymond-lo.com, revolutiontt.me, Rex Mundi, Rexoman, SourceForge, Spain, Spear Phishing, SQLi, Steve-O, stratigraphy.org, swftools.com, Syria, tadmor4dev.sy, Taiwan, Targeted Attack, Telvent, Telvent Canada, th3inf1d3l, The Innocence of Muslims, The Usos Team, thepiratebay.se, thetablet.co.uk, Toyota, Transcend Capital, Tulsa, Turkish Ajan Hacker Group, Twitter, tycsports.com, U.S. Bancorp, U.S. Bank, United States, United States Department of Agriculture, University of Padua, University Of Technology Sidney., uts.edu.au, Wells Fargo, White House Military Office, WHMO, Xc0unt3r, Xception Code, xL3gi0n hacker, yabroud4dev.sy, YEIZETA

Iran Energy Water Website Defaced By An Israeli Hacker Against The Terrorist Attack in Burgas

July 24, 2012 Paolo Passeri Leave a comment

You-r!-k@n keeps on his personal battle against Iran.

The latest target is the official website of Iran Energy Water (tw.org.ir), which has been defaced, showing, in several sections, of the main page, a message against the Iran Nuclear Program and against the recent event in Bulgaria where five Israeli tourists (and their local driver) were killed in a terrorist attack in the Black Sea city of Burgas. At the time of writing the web site is unavailable, showing the well-familiar IIS7 Splash Screen (in spite of the embargo and the alleged Iranian Cyber Autarchy).

As you know, Israel blamed Iran for the latter event (backed by American Officials), and hence, easily predictable, the dispute between the two states has (once again) crossed the boundaries of the cyber world (but a defacement is quite a simple question in comparison with Stuxnet and The Flame).

The time of the Middle East Cyber War is well behind, nevertheless cyber events targeting both countries, whether state-sponsored or carried on by lone rangers, continue to happen at a constant rate.

Categories: Security Tags: Bulgaria, Burgas, Defacement, Flame, Iran, Iran Energy Water, Iran Nuclear Program, Israel, Middle East, Middle East Cyber War, Stuxnet, tw.org.ir, United States, you-r!-k@n

The 2010 Olympic Games

June 4, 2012 Paolo Passeri Leave a comment

Two months again and the World will assist to the 2012 London Olympic Games. Unfortunately the same is not true for Information Security Professional for which the Olympic Games have started approximately two years ago in Iran, more exactly during the summer of 2010 when the infamous malware Stuxnet (the first 21st Century Cyber Weapon) became public, unleashing its viral power to the entire World.

Apparently Olympic Games have nothing to deal with Stuxnet… Only apparently since “Olympic Games” is just supposed to be the code-name of the cyber operation, begun under the Bush administration and accelerated by Mr. Obama, aimed to build the first Cyberweapon targeting the Iranian Nuclear Facilities. This is in few words the genesis of Stuxnet, at least according to a controversial article published by The New York Times, which anticipates a book on the same argument by David E. Sanger (Confront and Conceal, Obama’s Secret Wars and Surprising Use of American Power), and which is generating a comprehensible turmoil.

Of course many words have been spent on the argument and probably (too) many will be spent as Stuxnet has not proven to be an isolated case. Moreover (is this a coincidence?) these revelations of the NYT came out in the aftermath of the discovery of the Flame Malware which is further fueling the tension in Middle East and, if officially confirmed, could set a potentially dangerous precedent for other countries looking to develop or expand their own clandestine cyber operations.

I think I cannot give any useful contribution to the debate, if not a humble suggestion to read this interesting interview to F-Secure CRO Mykko Hypponen who explains the reason antivirus companies like his failed to catch Flame and Stuxnet… If really the alleged NYT revelations will encourage other countries to enhance their cyber arsenal, there is much to be worried about, even because the 21st century cyber weapons have shown, so far, a clear attitude to escape from the control of their creators.

Categories: Cyberwar, Security Tags: Barack Obama, Bush, Cyber Espionage, Cyber Weapons, David E Sanger, Flame, Iran, Middle East, Mykko Hypponen, New York Times, Olympic Games, Stuxnet, United States

Middle East Cyber War Timeline (Part IV)

February 11, 2012 Paolo Passeri 3 comments

Another week, another wave of attacks between the two cyber contenders (here: Part I, Part II, Part III).

After some mutual attacks in terms of DDoS and defacements (with a new entry from Morocco and a resounding defacement against the Tel Aviv University Security Studies Program website, the head of the National Cyber Defense Authority), this week has seen the revamping of Credit Cards leaks “thanks” to Zcompany Hacker crew, who dumped more than 200 Credit Cards belonging to Israel And United States.

Even considering this latter event, however, the timeline seems to have confirmed the descending trend, with the early actors of both parties apparently quiet inside their virtual shelters (maybe to elaborate new strategies). But in this apparently calm sky a new thunderstorm threatens the horizon: it is the Anonymous which posted a message promising a reign of terror for Israel…

If you have a look to the Middle East nations involved in the cyber conflict which made attacks or suffered attacks (depicted in the map below that does not include U.S. victim of the latest Credit Card leak and France whose Council of Jewish Institutions was hacked earlier in June), you may easily notice that the virtual geopolitics reflect nearly exactly the real ones (the dotted arrow from Iran indicates the uncertainty of the nationality of OxOmar) with the new entry of Pakistani ZHC.

Older Entries

About these ads

May 2013
M	T	W	T	F	S	S
« Apr
	1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29	30	31

Twitter

1-15 May 2013 Cyber Attacks Timeline hackmageddon.com/2013/05/23/1-1… #Infosec - 2 days ago
Apparently someone flags the Cisco Website as malicious... virustotal.com/en/url/fb74e6d… - 2 days ago
RT @marco_cova: IE8 0-day exploit (CVE-2013-1347) analyzed on Wepawet: bit.ly/13IZs2E - 3 days ago
RT @jc_vazquez: Vista Equity Partners to Buy Websense #News #InfoSec on.wsj.com/13BfWaw via @WSJ - 5 days ago
Pentagon OKs Androids, BlackBerrys for soldiers nakedsecurity.sophos.com/2013/05/07/pen… - 6 days ago
April 2013 Cyber Attacks Statistics wp.me/p14J6X-2oX - 6 days ago
RT @LastlineLabs: Marco Cova from Lastline talking about hacktivism on Italian TV ow.ly/l8Az6 - 1 week ago
RT @lastlineinc: Malware can make itself invisible: in the case of RSA security's breach, malware went undetected for 1/2 year http://t.co/… - 1 week ago
RT @gianlucaSB: SMS-based command and control protocols are here ow.ly/l47Ye - 1 week ago
Skype with care Microsoft is reading everything you write h-online.com/security/news/… - 1 week ago

Follow @paulsparrows

Hackmageddon.com

Archive

1-15 March 2013 Cyber Attacks Timeline

1-16 February 2013 Cyber Attacks Timeline

16-31 January 2013 Cyber Attacks Timeline

The Quassam Group Stops the Cyber Attacks Against US Banks

16-31 December 2012 Cyber Attacks Timeline

16-30 November 2012 Cyber Attacks Timeline

16-30 September 2012 Cyber Attacks Timeline

Iran Energy Water Website Defaced By An Israeli Hacker Against The Terrorist Attack in Burgas

The 2010 Olympic Games

Middle East Cyber War Timeline (Part IV)

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Twitter

Follow “Hackmageddon.com”

Archive

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Related articles

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

Share:

Like this:

About The Author

Stats

Support My Work!

Share:

Stay Tuned!

Interesting Links

News

About This Blog

Calendar

Archive

Tag

Recent Posts

Top Posts & Pages

Visitors from…

Follow “Hackmageddon.com”