Ghost Squad Hackers

Ghost Squad Hackers or by the abbreviation "GSH" is a politically motivated hacktivist team responsible for conducting cyber attacks on central banks, Fox News and CNN, leaking sensitive data of the United States Armed Forces, leaking sensitive data of the Israeli government, hijacking Afghanistan's Chief Executive's Twitter account, and much more. Led by the administrative de facto leader known as s1ege (l33tsp33k name for "siege"). The group's prime intent and focus is embedded on anti-governmental and organization cyber protests within current involvements of media speculation and real life happenings in 2016 to present.[1][2]

List of attacks on governments and organisations

Ethiopian government

In January 2016, GSH started its very first attacks by the defacing of Ethiopian government websites in response to the killing of nearly 500 students and activists by Ethiopian Security Forces during protests that became extremely violent was involved in the latter part of 2015 and then sparked again between August and October in 2016 Ethiopian protests.[3][4][5]

Donald Trump

On May 21, 2016 GSH targeted Donald Trump's official website by launching Distributed Denial of Service (DDoS) attacks for what they saw as racist comments made towards refugees and Mexicans.[6][7] Shortly after targeting Trump's official website GSH shut down Trump's hotel collection websites.[8][9][10]

Israeli Defense Force

The group gained more notoriety after having successfully leaked data of the Israeli Defense Force on April 7, 2016. This was the day #OpIsrael was launched along with Anonymous, leaking the Database of Israel Defense Force posting thousands of IDF soldiers, border patrol, and Israeli Air Force personnel information online.[11]

Ku Klux Klan

On April 23, 2016 GSH targeted the Loyal White Knights of the Ku Klux Klan by taking their websites down in the protest of racism while Anonymous vs. KKK protests were happening in the state of Georgia, U.S.A.[12][13][14][15][16][17][18][19] Ghost Squad Hackers did the same however, in a turn of events taking down Black Lives Matter's official website[20] after claiming the organization fueled further racism. After encountering further opposition and confrontation between Anonymous activists and BLM group that led to GSH shutting down Black Lives Matter's website[21] over 100 times.[22][23][24][25][26][27] Word was quick to spread as GSH and Anonymous were both put in spot light by the TV Series Mr. Robot in an article published online.[28][29]

Operation Icarus

GSH and Anonymous worked in correlation together when "Operation Icarus" was first launched in February 2016.[30] The op was aimed at attacking the central banking system which the attackers accused the banks with corruption and wanted to raise public awareness. This attack sparked the invitation of more hacking teams and affiliations of Anonymous to focus their attention towards that of the Central Banks in direct regards of further scrutiny and cyber attacks.[31]

Ghost Squad Hacker's leader s1ege claimed responsibility for the attacks which were carried out on the Bank of England email server and dozens of other banking websites including the New York Stock Exchange, Bank of France, Bank of Greece, Bank of Jordan and the Bank of South Korea, among others. s1ege went on to state that they want to "start an online revolution" to retaliate against the "elite banking cartels putting the world in a perpetual state of chaos."[32][33][34][35] Hundreds of banks were targeted in this operation and to this day the exact number of banks effected is unknown.[36][37][38][39][40][41][42]

Operation Silence

Notoriety of the group continued to escalate as the heat was turned up during the month of June, 2016. After censoring of media coverage in regards to OpIsrael, OpSilence[43] was initiated targeting mainstream media outlets such as CNN and Fox News.[44][45][46][47][48] A data dump was later leaked after hacking the United States Military personnel files and releasing information on close to 2,437 army personnel.[49][50] The information contained in the link was uploaded to an onion link on the dark web along with a paste-bin link which contained credit card numbers and personal information on U.S. Army personnel.[51][52][53][54][55][56][57]

Baton Rouge City government website

July 19, 2016 the sub domain of Baton Rouge City government website[58] was hacked twice in one day by GSH after previously making news after attack towards both the KKK and BLM.[59] These attacks however were targeting the City of Baton Rouge, Louisiana in protest against police brutality in which a city native Alton Sterling was shot and killed by Baton Rouge police officers on the 5th earlier that month. The Baton Rouge website[60] was defaced along with a picture of Alton Sterling with a message that read, "Being black is not a crime! This is for the shooting of Alton Sterling, just because he's black does not mean he is a bad guy. You will pay. We are the justice. We are Ghost Squad Hackers. /R.I.P. Alton Sterling.[61]

Afghanistan government and its officers

Later in the same month GSH took over the official Twitter account of Afghanistan's Chief Executive Dr. Abdullah Abdullah in an effort to raise awareness against corruption and alleged drug deals between Afghanistan and the U.S. They also targeted the Afghan Public Credit Registry website[62] by defacing it which also further allowed them access to several social media accounts including Dr. Abdullah's in which they tweeted,

"Afghanistan Gov Hacked by GhostSquadHackers #CheifExecutiveOfficer Can you hear me now? twitter.com/afgexecutive. We found an exploit in the government server and pulled every login we could. We have more also but Dr. Abdullah was not using phone restriction and 2FA was not enabled".[63]

The attacks on the Afghan government continued relentlessly on the first of September after prior targeting of Afghanistan's Chief Executive Twitter account, GSH further assaulted the government by defacing twelve websites in one day all of which were affiliated with the Afghan government.[64] This included the Afghanistan's Ministry of Justice, the Ministry of Defense, the Ministry of Foreign Affairs, the Ministry of Refugees and Repatriations, and the Afghan Attorney General's Office. Further assaults continued in hopes of raising awareness for Palestine as part of OpSilence[65] and OpIsrael after shutting down the Israeli Prime Minister and the Bank of Israel.[66]

Operation Decrypt ISIS

The group's focus in 2017 shifted slightly towards targeting ISIS and removing them off the internet and social media completely. A multitude of accounts from Facebook, Twitter, and Telegram alike were hacked and added to an extensive list of ISIS removed. Further efforts by GSH later revealed bomb instructions and plans to be carried out by ISIS.[67][68]

s1ege stated "We really do not care about attacking the U.S. elections. They've already been hacked. We mostly hack ISIS" in an interview with CBS news in the year 2018.[69][70]

On February 12, 2019 s1ege released a massive leak on Islamic State Telegram and WhatsApp group's/channel's administrators. The leak included hacked phones/mobile devices, hacked Telegram accounts, hacked facebooks, hacked Twitter accounts, credit cards, geolocation data, government issued ID cards, and IP logs belonging to the administrators. The group successfully infiltrated the Islamic state community on encrypted communication applications and exposed the administrators by using malware and exploits.[71][72][73][74] The leak was published on mega.nz and Ghost Squad Hackers Official Twitter account.[75][76][77][78] One of the Telegram and Whatsapp Admins (Riffat Mahmood Khan) was a former taxi driver living in Auburn was linked to ISIS and accused of administering the group's encrypted messages. He traveled to Syria in support of the Islamic State in 2015. He returned from the conflict zone via Turkey six months later, and was promptly picked up by Australian Federal Police officers at the airport as he flew in, in September 2015. Video footage from the raids obtained by The Herald showed his wife and the children being led away from the home by uniformed police, while officers swarm on the Auburn home. He is believed to not have actually participated in the fighting in Syria, but spent time there with the radical group before returning and allegedly continuing his work for the Caliphate. The man remained involved with the Islamic State's encrypted online messaging and continued to take care of the WhatsApp and Telegram groups that the radical Islamic group uses to communicate internally and for recruiting. Documents leaked by GSH showed that several of the accused ISIS supporter's children were enrolled in local Islamic school Al Bayan. He attended South Granville mosque Al Noor, where some sources suggest he became radicalized. Images from his hacked phone exposed by GSH depicted the ISIS flag flying above Venice, explosions, blood-stained knives, children brandishing ISIS flags, a meme saying 'One bullet away from Paradise' and critically wounded soldiers.[79][80][81][82] Leaked data from GSH showed one Belgian (Siraj El Moussaoui), known to be an ISIS supporter, had a video on his phone about how to most effectively behead someone. Siraj El Moussaoui tried in vain to join the Islamic State in 2016 and was arrested shortly after on suspicion of plotting an attack in Belgium.[83][84]

gollark: Wow! I hate nvidia more now!
gollark: Or maybe it's just "you can have either", who knows.
gollark: I think you can have one HDMI display and one whatevernonsensetheotherportsare display.
gollark: I run Arch Linux on my pi, not that it gets much use.
gollark: Anything can be mounted with enough duct-tape. Badly.

References

  1. "Interview with a hacker: S1ege from Ghost Squad Hackers". TechRepublic. Retrieved 2018-03-14.
  2. "Interview of a Hacker: S1ege from Ghost Squad Hackers". Cyware. Retrieved 2018-09-01.
  3. Shekhar, Amar (2016-01-07). "Ghost Squad Hackers Hack Ethiopian Websites In Response To Killing Of Protesting Students". Fossbytes. Retrieved 2018-03-14.
  4. ahson (2016-01-09). "Deadly Protests in Ethiopia and Response Of Ghost Squad Hackers". The Hack Today. Retrieved 2019-02-23.
  5. "Ghost Squad Hackers Hack Ethiopian Websites In Response To Killing Of Protesting Students". Information Security Newspaper. 2016-01-08. Retrieved 2019-02-23.
  6. "Ghost Squad Hackers hit Trump sites with DDoS attacks". SC Media US. 2016-04-04. Retrieved 2018-03-14.
  7. Qureshi, Noor (2016-03-19). "#OpTrump — Ghost Squad Hackers Targeted .edu Domains". The Hack Today. Retrieved 2019-02-23.
  8. "Hacktivists Shut Down Donald Trump Hotel Collections Website". HackRead. 2016-05-21. Retrieved 2018-09-01.
  9. Author, Unallocated (2016-05-22). "Donald Trump Hotel Collections Website Taken Down By The Ghost Squad". Latest Hacking News. Retrieved 2019-02-23.
  10. Team, SecureWorld News. "Ghost Squad Uses DDoS Attacks to Take Down Two Trump Websites". secureworldexpo.com. Retrieved 2019-02-23.
  11. "Ghost Squad Hackers Release Massive Data-Leak From The Israeli Defense Force". The Last American Vagabond. 2016-04-07. Retrieved 2018-03-14.
  12. Waqas (2016-04-24). "Anonymous Ghost Squad's DDoS Attack Shuts Down KKK Website". HackRead. Retrieved 2018-03-14.
  13. "Hackers attack KKK and briefly bring down main website". Fox News. 2016-04-24. Retrieved 2019-05-17.
  14. "Anonymous Just Scored a Major Victory Against the KKK". Retrieved 2018-09-01.
  15. Crosbie, Jack. "Anonymous Takes Down KKK Website". Inverse. Retrieved 2019-02-23.
  16. Murgia, Madhumita (2016-04-25). "Hacker group Anonymous shuts down KKK website". The Telegraph. ISSN 0307-1235. Retrieved 2019-02-23.
  17. techbug9 (2016-04-24). "KKK Website Shut Down by Anonymous Ghost Squad's DDoS Attack". TechWorm. Retrieved 2019-02-23.
  18. "Anonymous affiliate Ghost Squad brings down KKK website". VPNPick.com. 2016-04-25. Retrieved 2019-02-23.
  19. "Anonymous hacker group takes down KKK website | TheINQUIRER". theinquirer.net. 2016-04-25. Retrieved 2019-02-23.
  20. https://blacklivesmatter.com/
  21. https://blacklivesmatter.com/
  22. Cimpanu, Catalin. "Anonymous Ghost Squad Hackers Take Down Black Lives Matter Website". softpedia. Retrieved 2018-03-14.
  23. Russon, Mary-Ann (2016-05-03). "Anonymous takes down Black Lives Matter website to make point that 'All Lives Matter'". International Business Times UK. Retrieved 2018-09-01.
  24. "Black Lives Matter website hit by more than 100 DDoS attacks in seven months". Retrieved 2018-09-01.
  25. "Anonymous Hackers Just Took On Their Next Target". Retrieved 2018-09-01.
  26. Glaude, Eddie S. (2018-05-24). "James Baldwin and Black Lives Matter". A Political Companion to James Baldwin. University Press of Kentucky. doi:10.5810/kentucky/9780813169910.003.0014. ISBN 9780813169910.
  27. "Anonymous-affiliated group launched at least 127 attacks against Black Lives Matter websites". rawstory.com. Retrieved 2019-05-17.
  28. "Anonymous Groups Attacked Black Lives Matter Website for Six Months | Blog | Mr. Robot | USA Network". USA Network. 2016-12-14. Retrieved 2018-03-16.
  29. "Anonymous Groups Attacked Black Lives Matter Website for Six Months | Blog | Mr. Robot | USA Network (cached view from March 17, 2018)". 2018-03-24. Archived from the original on 2018-03-24. Retrieved 2019-10-19.
  30. Bond, Anthony (2016-05-04). "Anonymous announces war against Bank of England and New York Stock Exchange". mirror. Retrieved 2019-02-23.
  31. Ashok, India (2016-05-13). "OpIcarus: Did Anonymous just hack the Bank of England?". International Business Times UK. Retrieved 2018-04-26.
  32. "OpIcarus: Anonymous hackers shut down Bank of England, call for 'online revolution'". RT International. Retrieved 2018-04-26.
  33. "OpIcarus: Anonymous crusade against the sick banking industry". Security Affairs. 2016-05-15. Retrieved 2019-02-23.
  34. "Anonymous Hits New York Stock Exchange, World Bank, The Fed, and Vatican — Total Media Blackout". activistpost.com. 2016-05-26. Retrieved 2019-02-23.
  35. Syrmopoulos, Jay (2016-05-25). "Anonymous Hits New York Stock Exchange, World Bank, The Fed, & Vatican -- Total Media Blackout". The Free Thought Project. Retrieved 2019-02-23.
  36. Mansfield, Katie (2016-05-11). "'This is just the beginning' Anonymous hackers take down nine banks in 30-day cyber attack". Express.co.uk. Retrieved 2019-02-23.
  37. "Op Icarus: Anonymous hits 8 banks with DDoS attacks". International Business Times UK. 2016-05-09. Retrieved 2019-02-23.
  38. "OpIcarus: Anonymous Shut Down 4 More Banking Websites". HackRead. 2016-05-13. Retrieved 2019-02-23.
  39. Cimpanu, Catalin. "Anonymous Attacks Eight More Banks Part of OpIcarus". softpedia. Retrieved 2019-02-23.
  40. techbug9 (2016-05-12). "Anonymous takes down nine banks in 30-day cyber attack". TechWorm. Retrieved 2019-02-23.
  41. "Anonymous Teams up With GhostSquad to Attack Major Banks". cyware.com. Retrieved 2019-02-23.
  42. "Anonymous teams up with GhostSquad to attack major banks". BetaNews. Retrieved 2019-02-23.
  43. http://news.softpedia.com/news/anonymous-announces-opsilence-month-long-attacks-on-mainstream-media-504760.shtml
  44. "Expert Opinion on #OpSilence attack on CNN email servers". digitalforensicsmagazine.com. Retrieved 2018-03-14.
  45. "Anonymous Is Preparing an All-Out Assault on the Mainstream Media". mic.com. Retrieved 2019-02-23.
  46. vijay (2016-06-02). "Anonymous announce OpSilence against MSM, bring down CNN and FOX News servers". TechWorm. Retrieved 2019-02-23.
  47. righteous (2016-06-03). "#OpSilence - Ghost Squad Hackers Target Fox News, CNN, NBC and MSN". AnonHQ. Retrieved 2019-02-23.
  48. Savitha (2016-06-20). "Anonymous Declares War on Mainstream Media: Attacks Fox, CNN, NBC and More". The Bengalurean. Retrieved 2019-02-23.
  49. Cimpanu, Catalin. "Ghost Squad Hackers Leak Data of US Military Personnel". softpedia. Retrieved 2018-03-14.
  50. Team, SecureWorld News. "Hackers Leak Military Data". Retrieved 2018-09-01.
  51. Waqas (2016-06-23). "Hackers Just Leaked Personal Data of US Military Officials and it's Legit". HackRead. Retrieved 2018-04-26.
  52. "Hackers steal and leak US military personnel data - SiliconANGLE". SiliconANGLE. 2016-06-24. Retrieved 2018-09-01.
  53. "Thousands of US Military Personnel Records Leaked on Dark Web by Ghost Squad Hackers - Remove Spyware & Malware with SpyHunter - EnigmaSoft Ltd". Remove Spyware & Malware with SpyHunter - EnigmaSoft Ltd. 2016-06-24. Retrieved 2018-09-02.
  54. Team, SecureWorld News. "Hackers Leak Military Data". secureworldexpo.com. Retrieved 2019-02-23.
  55. "U.S Military Credit card and Personal data leaked By Hackers". Meet Hackers | Know Hackers With Us. 2016-06-25. Retrieved 2019-02-23.
  56. "Hackers Just Leaked Personal Data of US Military Officials and it's Legit". databreaches.net. Retrieved 2019-02-23.
  57. Khan, Zahir (2016-07-01). "Credit Cards, Personal Information And Us Military Emails Leaked". The Hack Today. Retrieved 2019-02-23.
  58. https://www.brla.gov/
  59. Waqas (2016-07-19). "Baton Rouge City Website Hacked Against Alton Sterling's Death". HackRead. Retrieved 2018-03-20.
  60. https://www.brla.gov/
  61. Waqas (2016-07-19). "Baton Rouge City Website Hacked Against Alton Sterling's Death". HackRead. Retrieved 2018-04-26.
  62. "Archived copy". Archived from the original on 2016-05-06. Retrieved 2018-03-16.CS1 maint: archived copy as title (link)
  63. Waqas (2016-07-31). "Twitter Account of Afghan Chief Executive Dr. Abdullah Hacked". HackRead. Retrieved 2018-04-26.
  64. Cimpanu, Catalin. "Ghost Squad Hackers Deface 12 Afghan Government Websites". softpedia. Retrieved 2018-03-14.
  65. http://news.softpedia.com/news/anonymous-announces-opsilence-month-long-attacks-on-mainstream-media-504760.shtml
  66. https://www.hackread.com/ghost-squad-attacks-israeli-prime-minister-site/
  67. "BREAKING: Anonymous Hacks ISIS Accounts Finds Attacks Planned for US, Bomb-Making Plans". The Free Thought Project. 2017-12-12. Retrieved 2018-04-26.
  68. "Anonymous Hacks ISIS Accounts Finds Attacks Planned for US, Bomb-Making Plans! - NY Evening". NY Evening. 2018-05-14. Retrieved 2018-09-01.
  69. "These are the hackers targeting the midterm election". cbsnews.com. Retrieved 2019-02-23.
  70. Patterson, Dan. "Campaign 2018: These hacking groups could target the 2018 midterm elections". CNET. Retrieved 2019-02-23.
  71. Dunn, Brian (2019-02-12). "Ghost Squad Hackers Release Contents from Internal Operation Known as #OpDecryptISIS, Exposing +1GB of Compressed Data Related To ISIS Members, Recruiters & Sympathizers Online". Rogue Media Labs. Retrieved 2019-02-23.
  72. Guy, Van Vlierden (February 21, 2019). "Telefoon van Antwerpse IS'er gehackt: een 'sexy hobbit' die wilde gaan vechten in Syrië".
  73. "IŞİD Telegram Ve Whatsapp Grupları Hacklendi; Çok Sayıda Numara Ve Fotoğraf Paylaşıldı". Asyanın Sesi (in Turkish). 2019-02-20. Retrieved 2019-02-23.
  74. Defcon-Lab (2019-02-13). "Vazamento de Dados – OpDecryptIsis – GhostSquadHackers". DefCon-Lab.org (in Portuguese). Retrieved 2019-02-23.
  75. "Isis admins on Telegram & Whatsapp have been decrypted #OpDecryptIsis We've managed to hack nearly most of the admin's: *Phones *Geolocation *Cameras *Telegram *Facebook *Twitter *IDs *Credit Cards *IP Logs leak".
  76. https://mega.nz/#F!bKYFiaxb!KkdI-OudR3tW4jLd4YEeLw
  77. https://ghostbin.com/paste/ez8te pic.twitter.com/RiVnxFr6cC
  78. https://twitter.com/__s1ege/status/109853361015461068
  79. Rawsthorne, Sally (2019-02-28). "'One bullet away from Paradise': Alleged Islamic State admin living in Sydney". The Age. Retrieved 2019-03-06.
  80. Rawsthorne, Sally (2019-02-28). "'One bullet away from Paradise': Alleged Islamic State admin living in Sydney". The Sydney Morning Herald. Retrieved 2019-03-06.
  81. "Australia: "One bullet away from Paradise": Alleged ISIS admin discovered living in Sydney - PressFrom - Australia". PressFrom - AU. Retrieved 2019-03-06.
  82. - (2019-03-02). "Bangladeshi origin former taxi driver is ISIS 'admin' in Australia". bharattimes.com. Retrieved 2019-03-06.CS1 maint: numeric names: authors list (link)
  83. ""One bullet away from Paradise": Alleged ISIS admin discovered living in Sydney". msn.com. Retrieved 2019-03-06.
  84. Naeyaert, Jonas (2019-02-21). "Betrapt: 30 GSM's van jihadisten gehackt". SCEPTR (in Dutch). Retrieved 2019-03-06.
This article is issued from Wikipedia. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.