According to the official statement of the representatives of the hosting company, the attackers used a vulnerability in an unnamed WordPress plugin to hack .
The attackers posted anti-Israeli messages on the hacked resources, and also infected sites with a malicious script that requested permission to access visitors' webcams.
According to Profero specialists, there were two versions of this script: one requested access to people's webcams, and the second tried to take a picture of the user and upload the picture to a remote server.
Also, on all infected sites, the hackers placed YouTube video with the message: “The countdown for the destruction of Israel began a long time ago.”
uPress informs you that that is investigating the incident and has already involved local law enforcement agencies in this. Currently, the hoster's specialists have temporarily suspended the work of the affected resources and have already got rid of the malicious files used by the hackers. Now work is underway to restore the normal functioning of the sites. Edition ZDNet reports that the Hackers of Savior group, according to preliminary data, has nine members living in Muslim countries, such like Turkey, Palestine, Morocco and Egypt. The attacks of the group were timed to coincide with the Israeli national holiday Jerusalem Day, dedicated to the reunification of Jerusalem after the Six Day War (1967).
The Israeli National Cyber Directorate has already warned users against any interaction with any hacked sites. The fact is that not all resources have gone offline – some of them are still available, and, most likely, are cached by CDN providers.
מאüss כי בי בות האחאחרוuty התקבלו התקו ️וחים במארך הסייוmp אוות איnk wood μם ωוmympa עĕאי- הנושא מטופל על ידי המערך. Utyled ממליצים לגולו להימurt מלחיצה ω קישורים במיelt שגולשים לאתר ש─ – Cyber israel (@israel_Cyber) May 21, 2020
Source: xaker.ru
