On May 21, 2020, over 2,000 Israeli websites were attacked by the hack group Hackers of Savior. Most of the affected resources, many of them owned by large companies, were hosted by uPress, an Israeli WordPress hosting service.
According to Profero specialists, there were two versions of this script: one requested access to people's webcams, and the second tried to take a picture of the user and upload the picture to a remote server.
uPress informs you that that is investigating the incident and has already involved local law enforcement agencies in this. Currently, the hoster's specialists have temporarily suspended the work of the affected resources and have already got rid of the malicious files used by the hackers. Now work is underway to restore the normal functioning of the sites. Edition ZDNet reports that the Hackers of Savior group, according to preliminary data, has nine members living in Muslim countries, such like Turkey, Palestine, Morocco and Egypt. The attacks of the group were timed to coincide with the Israeli national holiday Jerusalem Day, dedicated to the reunification of Jerusalem after the Six Day War (1967).
The Israeli National Cyber Directorate has already warned users against any interaction with any hacked sites. The fact is that not all resources have gone offline – some of them are still available, and, most likely, are cached by CDN providers.
מאüss כי בי בות האחאחרוuty התקבלו התקו ️וחים במארך הסייוmp אוות איnk wood μם ωוmympa עĕאי- הנושא מטופל על ידי המערך. Utyled ממליצים לגולו להימurt מלחיצה ω קישורים במיelt שגולשים לאתר ש─ – Cyber israel (@israel_Cyber) May 21, 2020
It must be said that the Israeli media vied with each other to report that that “Iranian hackers” were responsible for this attack, but so far there is no evidence of Iran's involvement in this incident.