NATO Investigates Alleged Data-Theft Hack by SiegedSec Hacktivist Group

July 31, 2023

NATO Investigates Alleged Data-Theft Hack by SiegedSec Hacktivist Group

NATO is currently investigating an alleged data-theft hack on its Communities of Interest (COI) Cooperation Portal by a hacktivist group called SiegedSec [2]. This group claims to have exfiltrated sensitive information from the portal, which is used for sharing unclassified information within NATO [4].

Description

CloudSEK [1] [2] [3] [4], a threat intelligence firm [1], analyzed the leaked data and discovered that sensitive information from 31 NATO member nations had been compromised. This information includes names, company affiliations [4], business emails [4], addresses [4], and photos [4]. The hacktivist group SiegedSec has stated that their motive for the theft is their opposition to NATO and its affiliated countries’ actions regarding human rights. NATO officials have acknowledged the claims but have not provided specific details [1]. They have assured that their classified networks are unaffected and that there is no impact on NATO operations [1]. The investigation into the breach is ongoing [1], and the method used by the hackers to gain access is still unknown [1]. However, it is believed that stolen credentials may have been involved [1]. SiegedSec [1] [2] [3] [4], known for previous breaches [2], appears to be motivated by hacktivism rather than financial gain [2]. They claim that the attack is in protest of NATO member countries’ attacks on human rights [2]. NATO officials are actively investigating the incident and working to strengthen their ability to detect and respond to cyber threats [3].

Conclusion

The alleged data-theft hack on NATO’s COI Cooperation Portal has raised concerns about the security of sensitive information within the organization. While NATO officials have assured that classified networks remain unaffected, the compromise of personal information from 31 member nations is a significant breach. The ongoing investigation aims to determine the method used by the hackers and strengthen NATO’s cybersecurity measures. This incident highlights the need for organizations like NATO to continuously improve their ability to detect and respond to cyber threats in order to safeguard sensitive information and maintain operational integrity.

References

[1] https://www.darkreading.com/attacks-breaches/hack-crew-responsible-for-stolen-data-nato-investigates-claims
[2] https://www.redpacketsecurity.com/nato-investigates-alleged-data-theft-by-siegedsec-hackers/
[3] https://cybermaterial.com/nato-investigates-siegedsec-data-hack/
[4] https://cisoseries.com/cyber-security-headlines-cyber-exec-convicted-sec-disclosure-how-the-government-gets-breached/