A significant number of popular websites belonging to media organizations appeared to has been hacked by the hacking collective of Syrian Electronic Army on Thursday.
The apparently hacked website, including The Independent, Telegraph e The Chicago Tribune, CNBC and other popular media agency like the Italian La Repubblica, display the following message
“You’ve been hacked by the Syrian Electronic Army (SEA)”.
According to the screenshots posted via Twitter by SEA also Dell, Microsoft, Ferrari and Unicef were hit by the hackers. Experts have immediately thought to an hack of customer management platform Gigya, which is used by hundreds of leading brands.
In an email from Gigya, visioned by journalists at CNBC, the company confirmed that it is under attack, apparently calls to Gigya domains were redirected to websites controlled by attackers and used to spread the messages. Fortunately the SEA haven’t used the traffic redirection to serve malware on final users, instead it has only spread propaganda messages.
The hackers of SEA team have chosen this date because it is Thanksgiving in the U.S. and probably the majority of Americans are browsing news websites in their spare time.
The Syrian Electronic Army supports the Syrian President Bashar al-Assad, in the last years the group hacked several important companies and media agencies, including the BBC, the Associated Press, The Financial Times, The New Your Time and the Guardian, Microsoft and Twitter.
The group is politically motivated and many security experts consider its campaigns as part of PSYOPs campaign directed by the Syrian Regime. The Syrian Electronic Army first emerged in May 2011, during the first Syrian uprisings, when it conducted various attacks against social media for pro-Assad propaganda.
Stay tuned for more information …
(Security Affairs – SEA, Gigya)
Cellcom, a regional wireless carrier based in Wisconsin (US), announced that a cyberattack is the…
Cryptocurrency exchange Coinbase announced that the recent data breach exposed data belonging to 69,461 individuals.…
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti EPMM, MDaemon Email Server, Srimax Output…
A critical flaw in OpenPGP.js, tracked as CVE-2025-47934, lets attackers spoof message signatures; updates have…
South Korean mobile network operator SK Telecom revealed that the security breach disclosed in April…
A flaw in O2 4G Calling (VoLTE) leaked user location data via network responses due…
This website uses cookies.
