Hamas Upgrades Cyber Espionage Capability

Uploaded on 2017-03-28 in FREE TO VIEW, INTELLIGENCE--International, NEWS-Cybersecurity News

An American cyber security company founded by an Israeli has identified a new cyber espionage campaign originating in the Gaza Strip and aimed at government ministries in Israel, Arab countries and the Palestinian Authority

Experts say that the infrastructure behind the attacks and the way that different servers have been used to hide their source reveals that the suspected organisation, known as the Gaza Cybergang Group.

This group has upgraded its capability to a level “which would not embarrass countries with reasonable cyber capabilities,” The Marker, an Israelo daily business newspaper reports

The Gaza Cybergang Group is thought to be backed by the Hamas political group which controls the Gaza Strip.

Gangs of hackers sent emails to their targets from a source which looked legitimate, such as a work colleague. The emails contained fake news headlines aimed at encouraging the reader to click on an attached link or file.

Opening of the file triggered installation of a program which sent the computer user’s identifying details to a control center manned by the hackers. If the details were sufficiently interesting, spyware was installed onto the unwitting user’s computer, spyware that could eavesdrop on conversations, read correspondence and operate the camera.

The same group opened a new Internet address, new.gov-il.host, as part of a specific plan to attack the Israeli government.

It was the Israeli development team at Palo Alto Networks which, having noticed repeated attempts to cyber breach different targets in Israel and elsewhere, linked the attacks, servers and tools used to a group of at least 10 hackers operating out of Gaza.

They noticed spelling mistakes in Hebrew and English reminiscent of mistakes made by Hamas in video clips and other written materials. An analysis of the timing revealed that there was no hacking on Fridays, a clear suggestion that the hackers were working a Middle Eastern week.

Fake news items posted as bait included photographs of Israeli Internal Security Minister Gilad Erdan and sports broadcaster Sharon Perry.

The Israeli government’s National Cyber Bureau would not comment on the Gaza attacks. It just said that different sources attempted on a regular basis to break into Israeli organisational networks.

Times Of Israel:

Jihadi Cybercrime:

Cyber Threats To Israel’s Air Traffic Control:

UAE Using Israeli Spy Technology:

« Italy's Foreign Ministry under Cyber Attack
Guide To The Internet of Things »

CyberSecurity Jobsite
Check Point
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Directory of Cyber Security Suppliers

Directory of Cyber Security Suppliers

Our Supplier Directory lists 8,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

ZenGRC

ZenGRC

ZenGRC (formerly Reciprocity) is a leader in the GRC SaaS landscape, offering robust and intuitive products designed to make compliance straightforward and efficient.

I-Tracing

I-Tracing

I-TRACING are experts in IT security, specialized in legal compliance of information systems, security of information systems, and the collection of digital evidence and traces.

Bittium

Bittium

Bittium provides proven information security solutions for mobile devices and portable computers.

Detack

Detack

Detack is an independent supplier of IT security auditing and consulting services.

Cybellum

Cybellum

Cybellum brings the entire product security workflow into one dedicated platform, allowing device manufacturers to keep the connected products they build cyber-secure and cyber-compliant.

DefCamp

DefCamp

DefCamp is the most important annual conference on Hacking & Information Security in Central Eastern Europe.

SCADASUDO

SCADASUDO

SCADASUDO is a cyber solution architecture and design office, established by leading experts in the field of OT (Industrial control) and IT (information Technology).

Veriff

Veriff

Veriff provides highly-automated identity-verification services that prevent fraud like nothing else on the market.

Global EPIC

Global EPIC

Global EPIC is an international cybersecurity initiative designed to combat growing world challenges by facilitating global collaboration in the field of cyber security.

GuardDog.ai

GuardDog.ai

guardDog.ai has developed a cloud-based software service with a companion device that work together to simplify network security.

Kiberna

Kiberna

Kiberna are a small but niche company specialising in data driven security to manage your cyber risks.

Crygma

Crygma

CRYGMA Quantum-Resistant Cryptographic Machines, the new standard in data encryption.

Segra

Segra

Segra owns and operates one of the nation’s largest fiber networks and provides best-in-class broadband and data security solutions throughout the Southeast and Mid-Atlantic.

Professional Labs

Professional Labs

Professional Labs specialize in simplifying complex problems for our customers with Cloud Services, Managed Services and Cyber Security.

ThreatER

ThreatER

ThreateER (formerly ThreatBlockr / Bandura Cyber) is a cybersecurity platform that provides active network defense by automating the discovery, enforcement, and analysis of cyber threats at scale.

PayPal Ventures

PayPal Ventures

PayPal Ventures invests in companies at the forefront of innovation in fintech, payments, commerce enablement, artificial intelligence, blockchain and cryptocurrency, regulatory and cyber technology.

Access Talent Today

Access Talent Today

Access Talent Today is an AI/ML and cyber security talent provider.