{"id":318,"date":"2015-01-20T01:01:50","date_gmt":"2015-01-20T01:01:50","guid":{"rendered":"http:\/\/www.raqqa-sl.com\/en\/?p=318"},"modified":"2015-01-20T01:01:50","modified_gmt":"2015-01-20T01:01:50","slug":"isis-takes-jihad-online-cyberattack-syrian-activist","status":"publish","type":"post","link":"https:\/\/www.raqqa-sl.com\/en\/?p=318","title":{"rendered":"ISIS takes jihad online with cyberattack against Syrian activist"},"content":{"rendered":"

A cyberattack on anti-Islamic State activists in Syria could be the first known case of hackers belonging to the Islamic State group directly targeting their enemies online.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\n\u201cThank you for your efforts to deliver a true picture of the reality of life in Raqqa.\u201d This small message of support emailed to the activist group Raqqa is being Slaughtered Silently (RSS) is in fact a trap.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nAnd, according to the Canada-based cyber research centre Citizen Lab, there is a strong possibility it was laid by the Islamic State group itself, indicating that the jihad it has been waging across large swaths of the Middle East has now moved online.<\/strong>
\n\u00a0\"ISIS<\/strong><\/p>\n

\u00a0<\/strong><\/p>\n

ISIS takes jihad online with cyberattack against Syrian activist<\/h4>\n

A report from Citizen Lab, published Thursday, details how the cyberattack used malware in an apparent attempt to reveal the location of activists belonging to RSS \u2013 a group that aims to highlight the daily human rights abuses committed by the Islamic State group in the central Syrian city of Raqqa, one of the terrorist organisation\u2019s strongholds.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nThe attack begins with the above email, sent to the addresses of unsuspecting RSS members and claims to be from a group of Syrians living in Canada and sympathetic to RSS\u2019s aims.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\n\u201cWe believe in the importance of shedding light on the realities of life in Syria, and Raqqa in particular,\u201d it says. \u201cWe are preparing a lengthy news report on the realities of life in Raqqa. We are sharing some information with you in the hope that you will correct it in case it contains errors.\u201d<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nThe email is accompanied by a link to a file-sharing site where the recipient can view a copy of the supposed report, including satellite images of Raqqa.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBut as the target views the images, a number of malware files are secretly being downloaded on their computer, says Citizen Lab.<\/strong>
\n\u00a0<\/strong>
\n\u00a0\"ISIS<\/a><\/strong><\/p>\n

\nTracking RSS members<\/span>
\n<\/strong>
\nIt\u2019s a classic way to infect computers, but the virus itself is incredibly simple, even old-fashioned. Most modern viruses allow hackers to take control of the target\u2019s computer, log keystrokes and steal files from the hard drive.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBut the RSS virus dates from the early years of the Internet. It aims to simply log the target\u2019s IP address (a unique number attributed to every Internet-connected device) along with a few details about their computer system and send it back to the hackers.<\/strong>
\n\u00a0<\/strong><\/p>\n

This information could be used \u201cto know if other vulnerabilities exist in the targeted computers with a view, perhaps, to a more sophisticated future attack,\u201d according to Jean-Fran\u00e7ois Beuze, founder of cyber security firm Sifaris.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nAs Lo\u00efc Gu\u00e9zo, cyber security specialist at Japanese firm Trend Micro, explains: \u201cIt\u2019s like a burglar who makes a reconnaissance of a building to see which doors are secure.\u201d<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBut the attack could have an even more sinister aim, says Citizen Lab. Obtaining the IP address gives the hackers an idea of where the targeted computer, and therefore its user, is located.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nSuch information would clearly be of interest to IS group members, Citizen Lab points out, implying that the virus is indeed the work of the terrorist organisation.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\n\u201cRSS hasn\u2019t escaped [the Islamic State\u2019s] notice,\u201d say its researchers \u201cand the group has been targeted for kidnappings, house raids, and at least one alleged targeted killing\u201d.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nThe malware, for the moment, has only been downloaded a total of ten times, it notes.<\/strong>
\nThis may seem a small number, but represents \u201cpotentially ten lives in danger\u201d, says Beuze. Even if the source of the cyberattack is unconfirmed, the Islamic State seems the most probable culprit. Their likely goal: locate the activists and then neutralise them.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBritish hacker in the IS ranks<\/span>
\n<\/strong>
\nUntil now, the IS group\u2019s online activities have consisted mainly of spreading propaganda \u2013 including highly polished recruitment videos as well as clips and images of gruesome beheadings and other atrocities.<\/strong>
\n
\n\"ISIS<\/a>
\n<\/strong><\/p>\n

ISIS takes jihad online with cyberattack against Syrian activist<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\n\u201cBut\u201d, says Beuze, \u201cthere is no reason why they wouldn\u2019t look to use, like many other groups, cyberattacks as a weapon\u201d.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nIt is highly probable the group would have the expertise within its ranks to carry out such attacks. A British hacker, Junaid Hussain, is suspected of joining the IS group after travelling to Syria in July 2014. A former student from Birmingham, Hussain was jailed for six months in 2012 for stealing personal information about former UK prime minister Tony Blair and publishing it online.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBut given the group\u2019s apparent technological know-how and significant resources, could the attack on RSS, if it did come from the IS group, be seen as surprisingly crude?<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\n\u201cNot so\u201d, says Guezo. The fact that the attackers did not, for example, attempt to take control of the targeted computers does not mean they did not have the ability to do so. It shows that they \u201cwere perfectly familiar with the technological environment in Raqqa\u201d, he says.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nControlling a computer remotely requires a stable Internet connection, something difficult to find in Raqqa, he says.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nA more complex virus, meanwhile, would risk \u201cbeing discovered more quickly\u201d, explains Beuze. A virus that simply logs an IP address, on the other hand, is much less likely to be detected by anti-virus software.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nBut above, if the IS group did carry out this cyberattack it \u201csends a message to all their enemies in Syria,\u201d says Gu\u00e9zo.<\/strong>
\n\u00a0<\/strong>
\n\u00a0<\/strong>
\nThe terrorists are saying to those that oppose them that they are now capable of tracking their activities online, so that they can find them in real life, Gu\u00e9zo explains.<\/p>\n

Source :\u00a0http:\/\/www.guerardmedia.com\/isis-takes-jihad-online-with-cyberattack-against-syrian-activist\/<\/span>
\n<\/strong><\/p>\n","protected":false},"excerpt":{"rendered":"

A cyberattack on anti-Islamic State activists in Syria could be the first known case of hackers belonging to the Islamic State group directly targeting their enemies online.     “Thank<\/p>\n

Read More…<\/a><\/div>\n","protected":false},"author":1,"featured_media":322,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[11,18,10,13,32,42,29,12,17,14,9,20,37],"class_list":["post-318","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-press","tag-is","tag-isil","tag-isis","tag-islamic","tag-islamic-state","tag-life","tag-press","tag-raqqa","tag-raqqa-is-being-slaughtered-silently","tag-state","tag-syria","tag-world","tag-youth"],"jetpack_featured_media_url":"https:\/\/www.raqqa-sl.com\/en\/wp-content\/uploads\/what-cyberthreat-does-isis-pose-showcase_image-2-p-1747.jpg","_links":{"self":[{"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/posts\/318","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=318"}],"version-history":[{"count":1,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/posts\/318\/revisions"}],"predecessor-version":[{"id":323,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/posts\/318\/revisions\/323"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=\/wp\/v2\/media\/322"}],"wp:attachment":[{"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=318"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=318"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.raqqa-sl.com\/en\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=318"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}