Hacking group BlackShadow hacked Israeli hoster and blackmails its clients

by Emma Davis
November 6, 2021
BlackShadow hacker group
Written by Emma Davis

The hacker group BlackShadow attacked the Israeli hosting provider Cyberserve, stealing client databases and disrupting the company’s services.

Cyberserve hoster is used by various organizations in the country, including local radio stations, museums and educational institutions.

Bleeping Computer reports that since Friday, October 29, 2021, when trying to access sites hosted on Cyberserve, visitors have encountered errors and messages that the resource is not available due to cybersecurity issues.

resource is not available

The hack group BlackShadow claimed responsibility for the incident and it is now extorting $ 1,000,000 in cryptocurrency from the hosting company and its customers, otherwise threatening to publish the data stolen during the attack.

Although the victims were given 48 hours to pay, the hackers almost immediately leaked a sample of data containing 1,000 records, apparently seeking to back up their claims with evidence. Moreover, it is reported that the leak has affected the personal information of users of a large LGBT website called Atraf:

The Atraf team has not yet contacted us to conclude any deals, so we selected 50 famous Israelis and leaked their videos.hackers report on Telegram.

Many sites hosted on Cyberserve were unavailable for a long time. Other resources affected include:

  1. public transport company Kavim (Dan Bus);
  2. travel agency “Pegas“;
  3. children’s museum of Holon.

Interestingly, Israel’s National Cyber Security Administration told The Times of Israel that they had previously warned Cyberserve several times about an imminent attack. It is unclear whether Cyberserve ignored these warnings or simply failed to find vulnerabilities that cybercriminals ultimately exploited.

Omri Segev Moyal

Omri Segev Moyal

BlackShadow is an Iranian state-sponsored hacker group that is linked to the Pay2Key ransomware strain that has been used repeatedly against Israeli targets.

However, unlike typical ransomware attacks, it is believed that the attackers behind BlackShadow are not financially motivated.

Omri Segev Moyal, co-founder and CEO of Israeli cybersecurity firm Profero, told Bleeping Computer that this hacker group is responsible for the attacks on gas stations in Iran and acts in contrary to Israel’s interests.

The recent attacks of the so-called BlackShadow are just another cycle of the secret Iranian-Israeli war. It’s a well thought out InfoOp combined with very weak hacking skills to wreak havoc on Israel. We assume that the current cycle is also a response to the attack on gas stations in Iran last week.Omri Segev Moyal.
Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

About the author

Emma Davis

I'm writer and content manager (a short time ago completed a bachelor degree in Marketing from the Gustavus Adolphus College). For now, I have a deep drive to study cyber security.

View all posts

Leave a Reply

Sending