SiegedSec Compromise NATO
SiegedSec Compromise NATO
  • Table of contents

The author

user_image
Research Team

The Cyberint Research Team work round the clock to unearth the latest threats to SMBs and enterprises. They are on top of the latest TTPs and monitor rising threat groups, malwares and trends.

Table of contents

Related Articles

Akira Ransomware
Research

Akira Ransomware: Published Over 30 New Victims on their DLS

Akira, a rising ransomware-as-a-service star was discovered in March 2023. Since then its victim count...
Nov 18, 2024
Learn more
Coral
Research

Not Your Grandfather’s Hacktivists: How Hacktivism Has Evolved

Fig 1: Crowd Sourcing to campaign against Israel Fig 2: Crowdsourcing to campaign against Russia...
Nov 14, 2024
Learn more
Research

SiegedSec Compromise NATO

Jul 24, 2023

As part of their campaign against the West, SiegedSec announced of their successful attack on NATO and leaking some valuable documents.

The leak, as the group stated, included hundreds of sensitive documents from NATO’s COI portal, which were meant exclusively for NATO countries and partners. SiegedSec claims that their motive behind the attack is NATO’s alleged infringement on human rights.

Who Are SiegedSec?

Following Russia’s invasion of Ukraine, there has been a notable rise in new threat groups worldwide. Some of these groups focus solely on hacktivist activities, targeting both commercial and government entities in Russia to disrupt their online operations. Others take advantage of the momentum generated by the widespread offensive cyber operations to pursue more sinister cybercriminal objectives, driven by personal gain.

One such threat group, which emerged just days before the invasion, identifies itself as “SiegedSec” and has adopted the tagline “sieging their victim’s security.” This group, led by a renowned hacktivist using the alias “YourAnonWolf” has been rapidly expanding its operations, as evidenced by the increasing number of victims it has claimed in recent months.

The group was claimed to be a faction of the Anonymous movement, as some might say is somewhat of a special forces unit of the hacktivist movement.

SiegedSec Attack on NATO

The attack on Western companies and government entities is not a new trend for SiegedSec.
On July 24, the group announced they were able to compromise NATO’s COI portal and to obtain
hundreds of documents (Figure 1)

 

Figure 1: SiegedSec’s announcement

Stealing and leaking sensitive information is one of the most common techniques of the group, especially when the victims are well-known and popular companies that can draw the attention and free PR they can gain. Another popular, high-profile campaign was against Atlassian in February, earlier this year.

Cyberint and the Dark Web

Cyberint excels in accessing high-tier sources that remain elusive to most companies. Our unique ability to penetrate these hidden corners enables us to collect and analyze invaluable data. We enrich our automated collection with a human approach, through research and analysis of our military-grade expert team.

Find new sources in deep and dark web marketplaces, forums, and sites, even if those sources are volatile and difficult to track. Get deep analysis and reports, that allow you to understand a specific threat actor and group profiling, including the places of operation, targeted countries or verticals, TTPs and more. Get a demo and see what assets you have exposed on the deep & dark web.

Book a Demo

Uncover your compromised credentials from the deep and dark web

Fill in your business email to start