Beware: Israeli Malware Trojan Trap Set to Bait #OpIsrael Anonymous Campaigners

DDoS tools marketed for those who want to participate in the 2017 OpIsrael campaign have been discovered to contain trojan malware capable of spying on Anonymous hackers. This particular malware can compromise the infected device’s “device’s camera, SMS messages, microphone, browser, call logs and physical location via GPS.”

5

#OpIsrael is an annual Anonymous campaign that wages DDoS and other cyber attacks against Israeli government agencies, websites and businesses. April 7 is earmarked as the start of the annual campaign –  the day #OpIsrael was officially launched in 2013, because Israel’s National Holocaust Remembrance Day fell then on the 8th.

The initial 2013 attack saw mass amounts of data uploaded and released, including over 100,000 Israeli websites disrupted and costing around $3 billion US in damages. Since the 2013 campaign, it has become an annual event for Israel to prepare for the upcoming attacks.

The attacks are in response to Israel’s continued human rights violations against the Palestinians.

Over the years, #OpIsrael Anonymous members have found themselves exposed as pro-Israeli forces retaliate. In 2014, “Buddhax”, an Israeli hacker linked to the Israeli Elite Force, exposed several Anonymous members by posting IP addresses, locations and photos that supposedly were recorded via Anonymous hackers’ webcams – a claim some still dispute.

This year, like previous years, the #OpIsrael campaign began forming over numerous Facebook, Twitter and YouTube channels, in preparations for the annual April attacks. Rallying hackers to the call of #OpIsrael, the campaign has not been swayed by pro-Israel retaliation.

However, in the recent 2017 campaign, US cyber security firm Digital Shadows discovered a Twitter account offering free DDoS tools to anyone wanting to participate in #OpIsrael. Generally, this isn’t an unusual practice, but these particular DDoS tools were discovered to contain malware capable of spying on those using it. In short, a trap was laid to target OpIsrael participants with malware.

#OpIsrael
Heavily redacted Twitter account of the source of the Trojan Trap. Source: Digital Shadows.

“We recently identified evidence indicative of a malware distribution campaign apparently intended to deploy remote access trojans (RAT) onto the machines of hacktivist actors engaged in supporting the 2017 iteration of OpIsrael,” Digital Shadows announced.

“While monitoring for activity relating to OpIsrael, Digital Shadows identified a Twitter account sharing links to what were claimed to be two denial of service (DoS) tools – one for Windows and one for Android devices. The tweets encouraged users to download these tools in order to participate in OpIsrael and featured multiple hashtags used by this campaign, as well as Anonymous collective imagery.”

The DDoS tools were for both Android devices and Windows-based systems.

Although the actors are unknown, Digital Shadows forewarns it isn’t unlikely that the Israeli government is ramping up actions to mitigate future OpIsrael campaigns. However, it could also be an individual either working for the government or for themselves.

Despite the lack of information on the individual(s) responsible, the downloading of this particular RAT will compromise the infected device’s “device’s camera, SMS messages, microphone, browser, call logs and physical location via GPS.”

All those participating in the Anonymous campaign #OpIsrael must remain vigilant with their privacy and cyber security. Take all necessary precautions and it goes without saying that common sense prevails – don’t download anything that cannot be verified to you as a ‘trusted source.’

The Israeli government has since increased their presence in Palestinian territories, ignoring the United Nations Resolution that Israeli settlements in the Gaza are illegal. Recent UN reports finding Israel guilty of apartheid were retracted, and respected United Nation’s Under Secretary General  Rima Khalaf was forced to resign after immense pressure from the Trump administration.

The Trump administration has since vowed to correct Obama’s call not to veto the UN’s December resolution, and to “support” Israel in either a “one-state” or two-state resolution, depending on what Israel decides.


This article (Beware: Israeli Malware Trojan Trap Set to Bait #OpIsrael Anonymous Campaigners) is a free and open source. You have permission to republish this article under a Creative Commons license with attribution to the author AnonWatcher and AnonHQ.com.


 Supporting Anonymous’ Independent & Investigative News is important to us. Please, follow us on Twitter:

CLICK HERE TO SUPPORT US VIA PATREON

Get Your Anonymous T-Shirt / Sweatshirt / Hoodie / Tanktop, Smartphone or Tablet Cover or Mug In Our Spreadshirt Shop! Click Here

 

5 COMMENTS

  1. In many ways, I very much admire your organization. However, I do wish you were not so anti-Israel.
    The destruction of Israel in in the “Palestinian” Charter. They have never changed it and repeatedly attack Israel. Arab-Israeli’s are represented in Israel’s Knesset and have more rights in Israel than any Arabs have in any Arab country. I honestly don’t know what you expect Israel to do when they are dealing with a group who seeks the destruction of Israel and the death of all Jews.
    How would you negotiate with people who want nothing but to see you dead and who pays suicide bombers’ families and continue to lob missiles into your country and send terrorists there to attack?
    The could have had their own country numerous times since 1949 and have rejected all efforts.
    What should Israel do?

  2. USA should expel ALL Israeli dual nationals back to Israel permanently. Israel should disappear from the face of the earth FOREVER. ZOG out of USA. “First by deception, you will do war.” Mossad’s own motto!

  3. I have a lot of craze to join anonymous.I want to help all poors,needy helpless all over the world specially Kashmir and Palestine

LEAVE A REPLY

Please enter your comment!
Please enter your name here