An obscure US federal website was attacked and vandalized on January 4, resulting in the site being taken down for more than 24 hours.
A group claiming to represent the Islamic Republic of Iran launched the attack against the Federal Depository Library Program (FDLP) website, changing its landing page to include a statement in Farsi and a Photoshopped image of President Trump bring struck by a fist representing the Revolutionary Guard.
The hack and defacement came on the heels of a US airstrike on Friday that killed Iran Revolutionary Guard General Qassem Soleimani.
The FDLP, whose site is now operating normally, has a mission to, "…provide free, ready, and permanent public access to Federal Government information, now and for future generations." It operates under the Government Publishing Office.
Chris Krebs, director of the Cybersecurity and Infrastructure Security Agency at DHS, on Saturday via Twitter warned organizations to renew their vigilance against potential Iranian cyberattacks, especially attacks concerning industrial control systems.
Given recent developments, re-upping our statement from the summer.— Chris Krebs (@CISAKrebs) January 3, 2020
Bottom line: time to brush up on Iranian TTPs and pay close attention to your critical systems, particularly ICS. Make sure you’re also watching third party accesses! https://t.co/4G1P0WvjhS
For more, read here.
Check out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's top story: "What Tools Will Find Misconfigurations in My AWS S3 Cloud Buckets?"