Pro-Palestinian hacktivist group claims responsibility for major cyber attack on internet archive
New Delhi: A pro-Palestinian hacktivist group, "SN_BlackMeta," has claimed responsibility for a significant cyberattack on the Internet Archive, resulting in the exposure of personal data for 31 million users. The breach compromised email addresses, usernames, and encrypted passwords, raising serious concerns about the security and data privacy of the digital library, widely known for its Wayback Machine.
The attack, discovered on October 9, exploited a vulnerability in a JavaScript (JS) library on the Internet Archive's website. A pop-up message appeared, notifying users of the breach, stating, "Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach? It just happened. See 31 million of you on HIBP!" The message referred to the service "Have I Been Pwned?" (HIBP), which helps users check if their data has been compromised.
Cybersecurity experts confirmed that the 6.4 GB database, shared by the attackers, contained email addresses, usernames, and passwords for millions of users. Troy Hunt, founder of HIBP, stated that over half of the compromised email addresses had already appeared in previous data breaches.
Brewster Kahle, the founder of the Internet Archive, acknowledged the breach and ongoing Distributed Denial-of-Service (DDoS) attacks that disrupted the platform. In a post on X (formerly Twitter), Kahle explained the steps taken, including disabling the compromised JS library and upgrading security protocols. He noted, "DDOS attack fended off for now; defacement of our website via JS library; breach of usernames/email/salted-encrypted passwords. We are scrubbing systems and enhancing security."
Despite efforts to restore service, the Internet Archive's website, including its popular Wayback Machine, has experienced intermittent outages. The organisation continues to address the fallout from the attack while reinforcing its systems.
The hacker group "SN_BlackMeta," linked to previous cyberattacks on Middle Eastern financial institutions, took credit for both the data breach and the DDoS attacks. In an X post, the group claimed their attack was motivated by pro-Palestinian sentiments, alleging that the Internet Archive, though not a U.S. government entity, is tied to American support for Israel. However, a community note on the post clarified that the Internet Archive is a nonprofit organisation that hosts extensive resources on Palestine.
Let the Truth be known. If you read VB and like VB, please be a VB Supporter and Help us deliver the Truth to one and all.
Rajasthan: Constable shunted to police lines after sharing Rahul Gandhi's post on 'vote theft'
Jaipur (PTI): A constable posted in Didwana-Kuchaman was shunted to police lines after he allegedly reposted a post by Congress leader Rahul Gandhi using the official X handle of the district police.
The post, which alleged "vote theft" in Haryana by the central government and the Election Commission, was reposted on Wednesday evening. However, it was removed immediately after the matter came to the notice of senior officials.
Officials said that the police department does not support the post.
The constable was responsible for operating the X handle. He was removed from the duty and attached to police lines, the officials said.
Superintendent of Police Richa Tomar said that the police department does not support the post and it was removed immediately after it came to notice.
"The post may have been shared due to an individual's mistake or account hacking. A detailed inquiry has been assigned to the Additional Superintendent of Police, Didwana," the SP added.
The post had claimed irregularities in Haryana's voter list, including multiple votes registered under the same photo and duplicate entries across different constituencies.
_vb_10.jpeg)
_vb_00.jpeg)