High profile global websites using the customer management platform Gigya suffered a traffic redirection attack operated by the Syrian Electronic Army.
A significant number of popular websites belonging to media organizations appeared to has been hacked by the hacking collective of Syrian Electronic Army on Thursday.
The apparently hacked website, including The Independent, Telegraph e The Chicago Tribune, CNBC and other popular media agency like the Italian La Repubblica, display the following message
“You’ve been hacked by the Syrian Electronic Army (SEA)”.
According to the screenshots posted via Twitter by SEA also Dell, Microsoft, Ferrari and Unicef were hit by the hackers. Experts have immediately thought to an hack of customer management platform Gigya, which is used by hundreds of leading brands.
In an email from Gigya, visioned by journalists at CNBC, the company confirmed that it is under attack, apparently calls to Gigya domains were redirected to websites controlled by attackers and used to spread the messages. Fortunately the SEA haven’t used the traffic redirection to serve malware on final users, instead it has only spread propaganda messages.
The hackers of SEA team have chosen this date because it is Thanksgiving in the U.S. and probably the majority of Americans are browsing news websites in their spare time.
The group is politically motivated and many security experts consider its campaigns as part of PSYOPs campaign directed by the Syrian Regime. The Syrian Electronic Army first emerged in May 2011, during the first Syrian uprisings, when it conducted various attacks against social media for pro-Assad propaganda.
Pierluigi Paganini is member of the ENISA (European Union Agency for Network and Information Security) Threat Landscape Stakeholder Group and Cyber G7 Group, he is also a Security Evangelist, Security Analyst and Freelance Writer.
Editor-in-Chief at "Cyber Defense Magazine", Pierluigi is a cyber security expert with over 20 years experience in the field, he is Certified Ethical Hacker at EC Council in London. The passion for writing and a strong belief that security is founded on sharing and awareness led Pierluigi to find the security blog "Security Affairs" recently named a Top National Security Resource for US.
Pierluigi is a member of the "The Hacker News" team and he is a writer for some major publications in the field such as Cyber War Zone, ICTTF, Infosec Island, Infosec Institute, The Hacker News Magazine and for many other Security magazines.
Author of the Books "The Deep Dark Web" and “Digital Virtual Currency and Bitcoin”.