A Crime against the Machine

For the last several days Israel has been under constant attack. Our civilians have been targeted, our financial institutions have been disrupted and our airlines have been under malicious assault…writes Raffe Gold.

The ‘invasion’ of Israel has made a headline here and there but nothing like we saw in Operation Cast Lead or the Six Day War. Rather these media stories have taken up mere inches of a newspaper or are relegated to specialty websites. The reason for this lack of media exposure is because the attacks have occurred in cyberspace.

It began with OxOmar. The self-proclaimed ‘Saudi National’ hacked into an Israeli website and stole the credit card details of thousands of Israeli citizens. Thus the first salvo in the new Middle East war was fired. It was entirely unprovoked and OxOmar stated that the ‘Jewish lobby’ was smothering his exploits. Over the course of January strikes by OxOmar and other hackers, including by the so called ‘Anonymous Palestine’ (though there is no evidence to suggest that the group is associated with the official Anonymous organization in any way), have taken down the Israel Festival website, Assuta Hospital, El Al and the Tel Aviv stock exchange. They also managed to take down the left-leaning Haaretz website though later apologized for that particular act of warfare.

Not wishing to be outdone a team of Israeli hackers began to strike at various websites within the Arab world. Calling themselves ‘IDF Team’ the group began to target the Saudi stock exchange, the Iranian Ministry of Health, collect Saudi Credit Card information and bring down the Abu Dhabi stock exchange. The group, speaking to various media outlets, has vowed to avenge attacks against Israeli websites by bringing down the sites of Arabian institutions and planting an Israeli flag in some sort of electronic victory. The majority of the attacks are Distributed Denial of Service (DDoS) attacks that have, so far, done little damage other than to make the websites inaccessible. It appears to be all fun and games. No one has been physically injured, so perhaps this constant game of cyber one up-man-ship is better than Hamas firing rockets at a million sleeping Israelis.

Yet it is incredibly dangerous to act in such a laissez-faire manner. Yes. OxOmar struck first. He struck at a civilian target and whilst I believe that IDF Team has the best of intentions they are criminals and should be prosecuted. Computer hacking is both a domestic and an international crime. INTERPOL, the International Criminal Police Organization, has an entire division devoted to computer crime. This division assists in international operations at the request of the countries. It would be incredibly simple for Israel to lodge a complaint and request that a case file be opened. For Israel to arrest IDF Team would show that they will not allow rogue citizens, even though they think they’re acting in the best interests of the nation, to take vigilante action. Israel, as a state, must categorically reject these hackers and display its willingness to abide by the law.

Early last year Israel set up a National Cyber Command under the auspices of a retired general. The Cyber Command will be involved in thwarting attempts to disrupt government websites and essential services and liaising with local businesses to ensure that their infrastructure is sufficiently protected. With the creation of our Command Israel hedged its bets that eventually the war for her existence would be played out on the cyber battlefield; their assumptions were correct.

The emergence of this new threat, led by individuals or groups of citizens rather than generals under the flag of a nation-state, shows that Israel must pump more money and resources into this field to ensure that her critical infrastructure is sufficiently protected. It must appeal to international bodies, including the governments of Saudi Arabia and whichever other nations these hackers reside in, to arrest those responsible. Israel can no longer be at the mercy of a team of cyber criminals. The tit-for-tat hacking between Israeli and foreign nationals is a dangerous game that could escalate into something much worse. It is best for all countries involved to tell their police and intelligence agencies to work on arresting those within their borders who are illegally hacking websites. This should not be treated as some kind of Zionistic (or pro-Arab) adventure to prove who is tougher but rather it should be within the same category as all hacking adventures: a serious crime.

 

[Source]

Subaru Israel Website has been Breached by “Syrian_DraGon”

Subaru, The automobile manufacturing giant’s Israeli website was hacked by an attacker named Syrian_DraGon.

Breach – http://www.subaru.co.il/x.txt

Message inside:

Syrian_DraGon

xhack@hotmail.co.uk

Unknown Hackers Crashed Israel “Sheba” Hospital Website

This time, low-life hackers took down the website of Israel’s largest hospital, Sheba Medical Center, but it’s unclear which group is responsible for the attack.

With this latest attack, a DDOS attack launched in the middle of the night took the site down for hours, and at the time of writing, was still unavailable, as can be seen by the screenshot from Down For Everyone.

Report says that technicians are trying to identify the source of the attacks, no one has publicly claimed responsibility, which veers away from the constant posturing we’ve seen from hackers on both sides in the past month.

It’s becoming all too easy to lose track of the many attacks taking place on either side

Unknown Hackers Crashed Israel “Assuta” Hospital Website

The Assuta Hospital has announced that their site has been rendered inoperative due to a hacker attack Tuesday night. “The hackers were unsuccessful. Assuta defense systems have prevented any leak of personal patient information. The site will be down until the attack is over.”

Security Company Says Israeli Websites Were Hacked by Hijacked Local Computers

Israel Police website announced hit on same day as Tel Aviv Stock Exchange and El Al websites were targeted.

Computers that were used in an Internet assault against several leading Israeli business websites on Monday are located in Israel – although the hacker apparently is not, according to Gil Shwed, CEO of Internet security company Check Point.

Among the websites targeted were those of the Tel Aviv Stock Exchange, El Al Israel Airlines and Israeli banks, and on Tuesday it was announced that the Israel Police website was also hit.

The method used by the hacker or hackers that overwhelmed the Israeli websites this week involves the use of malicious software such as a computer virus that enables a computer to be taken over without its owner’s knowledge. It is then used, through a setup known as a botnet, to disseminate junk messages and computer viruses in an effort to knock websites or computer networks out of service. The technique usually involves bombarding the target website or network with a large number of external communications requests.

Among the targets of Monday’s attack were marketing websites of Bank Beinleumi (First International Bank of Israel ) and two of its subsidiaries, Otzar Hahayal and Massad, but not its online banking sites.

The CEO of Maglan Information Defense Technologies, Shai Blitzblau, confirmed that the recent Internet assault, which forced the targeted websites to shut down for a time, made use of a number of Israeli computers, but he said most of the attacks this week came directly from abroad.

He suggested that the computer hacker chose to make use of computers in Israel – apparently without their owners’ knowledge – because of the damage that would be caused by the disclosure of databases of passwords and as a tactical measure. Once an assault is detected, he explained, firms can more easily block contact from abroad than activity originating from computers in Israel.

This week’s incident follows an attack earlier this month when a hacker calling himself 0xOmar, reportedly from Saudi Arabia, disclosed details of thousands of Israeli credit cards on the Internet.

Israeli hackers now claim to have retaliated against this week’s attack on the Israel Police website by crippling the Saudi Stock Exchange Internet site yesterday, according to a statement on the Pastebin website, which has served as a forum over the past few days for claims by both sides in the cyber war.

Israeli hackers also claim to have attacked the website of the Saudi government agency that regulates stock trading as well as the Abu Dhabi Stock Exchange website. Israeli and pro-Israeli hackers also claim to have disclosed the personal details of citizens of Saudi Arabia, the United Arab Emirates and other Arab countries.

“If the attacks from Saudi Arabia continue, we will step up our activity and neutralize these sites for a longer period of weeks and months,” Israeli hackers warned. Another group calling itself “Gilad Shalit” after the Israeli soldier recently released from Hamas captivity, claims to have attacked the electricity company of Afghanistan.

The potential scope of the use of computers of unsuspecting owners is huge. In November, for example, the FBI in the United States uncovered a botnet scheme that made use of 4 million computers.

At a news conference yesterday, Check Point’s Shwed called for more coordination among authorities around the world to address the threat. The attack against Israeli websites this week is similar to assaults carried out on July 4, 2009, against targets in the United States and South Korea. Those attacks were thought to have come from North Korea.

 

Source