In response to the conflict between Israel and Hamas, hacktivist groups sympathetic to Hamas, potentially with support from countries like Iran and Russia [1], have launched a series of cyberattacks on Israeli websites.
Description
These attacks include compromising websites [1], the Israeli electric grid [1], a rocket alert app [1], and the Iron Dome missile defense system [1]. The Jerusalem Post reported that their website has been down due to these cyberattacks [2]. Between October 2 and October 10 [3], Israel experienced 143 distributed denial-of-service (DDoS) attacks, making it the most targeted nation state during that period [3]. The attacks were claimed by hacktivists on the messaging service Telegram [3]. Primarily [3], the attacks targeted Israeli government agencies [3], news and media [3], and the travel sectors. Pro-Palestinian hacktivist groups [3], as well as a pro-Russian threat group [3], claimed responsibility for the attacks [3]. While most of the attacks have been low-level [3], there are signs of more impactful attacks being attempted [3]. Hacktivist groups exploited vulnerabilities in the ‘Red Alert’ app [3], which provides real-time rocket alerts for Israeli citizens [3], and targeted Israeli infrastructure and industrial control systems [3]. However, there is no indication that the listed targets have experienced denial of service attacks [3]. Cybersecurity experts warn that Israeli organizations will continue to be heavily targeted [3], and while DDoS and defacement attacks are not sophisticated [3], they can have a major impact on the victim’s operations [3]. The extent of the cyberattacks is unclear [1], but they demonstrate an effort to combine physical and digital offensives [1]. The groups behind the attacks may offer clues about whether Hamas acted alone in its recent deadly attack [1]. While there are no direct ties to foreign governments [1], some of these hacking groups benefit countries that provide them sanctuary [1], such as Iran [1].
Conclusion
These cyberattacks have had significant impacts on Israeli websites, including the Jerusalem Post. While most of the attacks have been low-level [3], there is a concern that more impactful attacks may be attempted in the future. Israeli organizations will continue to be heavily targeted [3], and while DDoS and defacement attacks may not be sophisticated [3], they can still have a major impact on operations [3]. The extent of the cyberattacks is still unclear [1], but they highlight the combination of physical and digital offensives. The groups responsible for these attacks may provide insights into whether Hamas acted alone in its recent deadly attack. Although there are no direct ties to foreign governments [1], it is worth noting that some of these hacking groups benefit from countries that offer them sanctuary, such as Iran [1].
References
[1] https://www.politico.com/news/2023/10/15/hackers-israel-hamas-war-00121593
[2] https://news.yahoo.com/israel-hamas-exchange-attacks-145352935.html
[3] https://www.infosecurity-magazine.com/news/concern-hacktivism-israel-hamas/
