Hackers suspected of links to Iran breach servers of Israeli website

The hacker group “Black Shadow”, which was presented as being linked to Iran, announced on Saturday, through the Telegram application, that it had penetrated the servers of the Israeli hosting site “Cyberserve”, making many of its sites unavailable, and it began leaking data.

Among the targets of the cyber attack were the websites of the public transportation companies Dan and Kavim that serve the Tel Aviv area, the Children’s Museum in Holon and the public radio blog.

At noon on Saturday, these websites hosted by Cyberserv were inaccessible. And Black Shadow posted on Telegram what it provided as a customer profile that includes the names, email addresses and phone numbers of Kavim users.

In a message attached to the supposed company profile, the hacking group warned that “the first data is here (…) if you don’t contact us, there will be more.”

In the evening, the hackers published a new message indicating that they now have “more data”.

This message was accompanied by purported profiles of clients of a travel company and an online dating site that could potentially make the site’s users’ sexual identities and orientations public.

On Friday evening, hackers sent a message via Telegram, warning “Cyberserve” of their imminent attack.

“We have news for you,” they wrote. “You probably won’t be able to access a lot of sites tonight, and that’s because we’ve targeted Cyberserv and its customers. What about data? As usual, we have a lot of it,” they added.

Israeli media quoted experts as saying that “Black Shadow” is an anti-Israel hacking group that uses cybercrime techniques to achieve financial and ideological gains.

In March, the group hacked the Israeli finance company KLS Capital.

In December 2020, the group also hacked the Israeli insurance company Sherbet and seized a large amount of data from its servers before demanding a ransom of nearly $1 million and gradually revealing a large part of the company’s data.

Saturday’s attack comes days after Iran was subjected to an unprecedented cyber attack, on Tuesday, that blocked the operation of the fuel distribution system across the country.

The perpetrators have not yet been identified, but the Iranian “Fars” news agency has accused opponents of the Iranian regime, as well as Israel and the United States.

In September 2010, the Stuxnet virus hit Iran’s nuclear program and caused a series of failures at the centrifuge facility used to enrich uranium. Since then, Iran on the one hand and Israel and the United States on the other have accused each other of launching cyber attacks.



Related Articles

Leave a Reply

Your email address will not be published.

Back to top button