Iranian hacking group Black Shadow compromised the server of the Israeli internet hosting company Cyberserve, taking down several of the sites hosted by the firm. The group also claims to have stolen data and threatens to leak it.
“Hello Again! We have news for you,” the hackers wrote in a message circulated on social media on Friday. “You probably could not connect to many websites today. ‘Cyberserve’ company and their customers [were] hit by us. You may ask what about Data? As always, we have lots of it. If you don’t want your Data leaked by us, contact us soon.”
Some of the websites hosted on Cyberserve’s servers were unavailable on Saturday morning. The company hosts the sites of the Dan and Kavim public transportation companies, the Children’s Museum in Holon, the Pegasus travel company and the blogsite of the Kan public broadcaster.
Later the group decided to publish some of the stolen data because the company did not contact them.
“They did not contact us… so (the) first data is here,” reads the message published by Black Shadow before publishing some of the stolen info.
Black Shadow hacked the Israeli insurance firm Shirbit in December and demanded a $1 million ransom, but the victim refused to pay it.
“Unnamed Israeli officials told Channel 12 news at the time of the attack that they believed a state was behind the Black Shadow attack. However, they did not name the country.” reported the Times of Israel website.
Israel and Iran have been engaged in long-running silent cyberwar, the most clamorous event is represented by the Stuxnet attack aimed at disrupting the Islamic Republic’s nuclear program.
This week, a mysterious cyberattack took down Iran’s subsidized fuel distribution system.
Follow me on Twitter: @securityaffairs and Facebook
| [adrotate banner=”9″] | [adrotate banner=”12″] |
(SecurityAffairs – hacking, cybercrime)
[adrotate banner=”5″]
[adrotate banner=”13″]
Microsoft found 394,000 Windows systems talking to Lumma stealer controllers, a victim pool that included…
CISA warns Russia-linked group APT28 is targeting Western logistics and tech firms aiding Ukraine, posing…
Cellcom, a regional wireless carrier based in Wisconsin (US), announced that a cyberattack is the…
Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals.…
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti EPMM, MDaemon Email Server, Srimax Output…
A critical flaw in OpenPGP.js, tracked as CVE-2025-47934, lets attackers spoof message signatures; updates have…
This website uses cookies.
