Pro-Palestinian hacktivist group claims responsibility for major cyber attack on internet archive
New Delhi: A pro-Palestinian hacktivist group, "SN_BlackMeta," has claimed responsibility for a significant cyberattack on the Internet Archive, resulting in the exposure of personal data for 31 million users. The breach compromised email addresses, usernames, and encrypted passwords, raising serious concerns about the security and data privacy of the digital library, widely known for its Wayback Machine.
The attack, discovered on October 9, exploited a vulnerability in a JavaScript (JS) library on the Internet Archive's website. A pop-up message appeared, notifying users of the breach, stating, "Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach? It just happened. See 31 million of you on HIBP!" The message referred to the service "Have I Been Pwned?" (HIBP), which helps users check if their data has been compromised.
Cybersecurity experts confirmed that the 6.4 GB database, shared by the attackers, contained email addresses, usernames, and passwords for millions of users. Troy Hunt, founder of HIBP, stated that over half of the compromised email addresses had already appeared in previous data breaches.
Brewster Kahle, the founder of the Internet Archive, acknowledged the breach and ongoing Distributed Denial-of-Service (DDoS) attacks that disrupted the platform. In a post on X (formerly Twitter), Kahle explained the steps taken, including disabling the compromised JS library and upgrading security protocols. He noted, "DDOS attack fended off for now; defacement of our website via JS library; breach of usernames/email/salted-encrypted passwords. We are scrubbing systems and enhancing security."
Despite efforts to restore service, the Internet Archive's website, including its popular Wayback Machine, has experienced intermittent outages. The organisation continues to address the fallout from the attack while reinforcing its systems.
The hacker group "SN_BlackMeta," linked to previous cyberattacks on Middle Eastern financial institutions, took credit for both the data breach and the DDoS attacks. In an X post, the group claimed their attack was motivated by pro-Palestinian sentiments, alleging that the Internet Archive, though not a U.S. government entity, is tied to American support for Israel. However, a community note on the post clarified that the Internet Archive is a nonprofit organisation that hosts extensive resources on Palestine.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Bengaluru: Four arrested for housebreaking, threats, extortion; fake PSI among accused
Bengaluru: Vidyaranyapura police have arrested four persons, including a man posing as a Police Sub-Inspector (PSI), for allegedly breaking into a house, threatening the occupants, and extorting money while wearing police uniforms.
The arrested accused have been identified as Mallikarjuna, Pramod, Vinay, and Hrithik.
Police said the accused had hatched a plan to pose as police personnel, conduct fake raids, and extort money from residents by intimidation.
ALSO READ: Bantwal police arrest two men for illegal sale of narcotics, seize two vehicles, 810 gm ganja
According to the police, Mallikarjuna had failed the PSI examination twice and later falsely projected himself as a PSI. He allegedly conducted photo shoots in his hometown, Siraguppa, wearing a police uniform, baton, cap, and shoes, claiming to be serving as a PSI in Bengaluru.
On December 7, the four accused allegedly went to the house of Naveen in the Vidyaranyapura limits, threatened him with a stick and an iron rod, and claimed they had information that he was selling ganja. Under the pretext of searching, they allegedly extorted ₹87,000 through bank transfer, ₹53,000 in cash kept in the house, and ₹2,000 from his wallet.
Following Naveen’s complaint, Vidyaranyapura police registered a case and launched an operation, leading to the arrest of all four accused. Police have seized ₹45,000 in cash and the car used to commit the crime.
Further investigation is underway.
