US Government Publishing Office Website DefacedUS Government Publishing Office Website Defaced
The Federal Depository Library Program (FDLP) website was attacked by a group of hackers claiming to represent the government of Iran.
January 6, 2020
An obscure US federal website was attacked and vandalized on January 4, resulting in the site being taken down for more than 24 hours.
A group claiming to represent the Islamic Republic of Iran launched the attack against the Federal Depository Library Program (FDLP) website, changing its landing page to include a statement in Farsi and a Photoshopped image of President Trump bring struck by a fist representing the Revolutionary Guard.
The hack and defacement came on the heels of a US airstrike on Friday that killed Iran Revolutionary Guard General Qassem Soleimani.
The FDLP, whose site is now operating normally, has a mission to, "…provide free, ready, and permanent public access to Federal Government information, now and for future generations." It operates under the Government Publishing Office.
Chris Krebs, director of the Cybersecurity and Infrastructure Security Agency at DHS, on Saturday via Twitter warned organizations to renew their vigilance against potential Iranian cyberattacks, especially attacks concerning industrial control systems.
Given recent developments, re-upping our statement from the summer.— Chris Krebs (@CISAKrebs) January 3, 2020
Bottom line: time to brush up on Iranian TTPs and pay close attention to your critical systems, particularly ICS. Make sure you’re also watching third party accesses! https://t.co/4G1P0WvjhS
For more, read here.
Check out The Edge, Dark Reading's new section for features, threat data, and in-depth perspectives. Today's top story: "What Tools Will Find Misconfigurations in My AWS S3 Cloud Buckets?"
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023