Iranian hacking group Black Shadow compromised the server of the Israeli internet hosting company Cyberserve, taking down several of the sites hosted by the firm. The group also claims to have stolen data and threatens to leak it.
“Hello Again! We have news for you,” the hackers wrote in a message circulated on social media on Friday. “You probably could not connect to many websites today. ‘Cyberserve’ company and their customers [were] hit by us. You may ask what about Data? As always, we have lots of it. If you don’t want your Data leaked by us, contact us soon.”
Some of the websites hosted on Cyberserve’s servers were unavailable on Saturday morning. The company hosts the sites of the Dan and Kavim public transportation companies, the Children’s Museum in Holon, the Pegasus travel company and the blogsite of the Kan public broadcaster.
Later the group decided to publish some of the stolen data because the company did not contact them.
“They did not contact us… so (the) first data is here,” reads the message published by Black Shadow before publishing some of the stolen info.
Black Shadow hacked the Israeli insurance firm Shirbit in December and demanded a $1 million ransom, but the victim refused to pay it.
“Unnamed Israeli officials told Channel 12 news at the time of the attack that they believed a state was behind the Black Shadow attack. However, they did not name the country.” reported the Times of Israel website.
Israel and Iran have been engaged in long-running silent cyberwar, the most clamorous event is represented by the Stuxnet attack aimed at disrupting the Islamic Republic’s nuclear program.
This week, a mysterious cyberattack took down Iran’s subsidized fuel distribution system.
Follow me on Twitter: @securityaffairs and Facebook
| [adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, cybercrime)
[adrotate banner=”5″]
[adrotate banner=”13″]
A critical vulnerability in the WordPress Automatic plugin is being exploited to inject backdoors and…
As cryptocurrencies have grown in popularity, there has also been growing concern about cybercrime involvement…
Healthcare service provider Kaiser Permanente disclosed a security breach that may impact 13.4 million individuals…
Over 1,400 CrushFTP internet-facing servers are vulnerable to attacks exploiting recently disclosed CVE-2024-4040 vulnerability. Over…
A ransomware attack on a Swedish logistics company Skanlog severely impacted the country's liquor supply. …
CISA adds Cisco ASA and FTD and CrushFTP VFS vulnerabilities to its Known Exploited Vulnerabilities…
This website uses cookies.