Hacked off: What happened when the Syrian Electronic Army attempted a cyber attack on The Independent?

Last week The Independent was victim of a cyber-attack by the Syrian Electronic Army. Luckily, our defence was strong. But what did they want from us anyway?

Ever since the beginning of the long and bloody Syrian civil war, the weight of international opinion has tipped in favour of the moderate rebel forces. Yet the country’s embattled President, Bashar al-Assad, has nonetheless enjoyed several propaganda coups, thanks in large part to the counter-revolutionary hacktivist group known as the Syrian Electronic Army (SEA), which has made a habit of inflicting humiliating cyber defeats on his ideological rivals in the Western media. Last week, it was our turn.

A suspected SEA attempt to hack the accounts of journalists at The Independent in May proved unsuccessful, yet this newspaper was targeted again late last Friday when senior staff became aware of a so-called “spear-phishing” operation, attempting to harvest user information and so gain access to the newspaper’s website and/or its social networking accounts. It is thought the group intended to use the platform to publish pro-Assad propaganda.

Phishing is a crude technique whereby hackers pose as a trustworthy entity to obtain personal information, such as passwords or credit card details. Spear-phishing, marginally more sophisticated, is aimed at specific individuals or companies – newspapers, banks, universities – and uses information gleaned from the public domain against them. The attack typically begins with an email, apparently from someone within the company – and often someone in a position of authority.

In the case of The Independent, the hackers managed to resurrect the defunct email address of a former senior editorial figure, and used it to fire off emails to some 50 staff members, each containing a link to an apparently harmless and familiar site, such as the BBC, MSN or Unicef. The link, when clicked, invited them to give their log-in details. Once they had those, the hackers would likely have sent another set of emails from their victims’ accounts, working their way along the chain until they found somebody with access to the newspaper’s online presence: its website, its Twitter accounts, or its Facebook page. By the time the IT security team was alerted to the hack, a handful had already offered their details. Their accounts were quarantined and their passwords changed, and on Friday night an email was sent to all staff warning them to be vigilant. Luckily, it was repelled before it could go any further.

The origins and identities of the SEA remain disputed. Many believe it is a self-organising outfit similar to the hacking group Anonymous. In an email interview with The Independent in May, hacker Th3Pro, the head of the SEA’s Special Operations division, said the group began as a Facebook page.

“Within a few days more than 60,000 Syrians joined,” he wrote. “Facebook shut it down, and then a website for the group was launched in addition to accounts on all social media sites. Many people joined us, hundreds, thousands.”

Though they support the Assad government, the young Syrians involved are not under its command, he claimed. “Our mission was to defend our country against the media campaign, first in the Arab media, and lately the Western media. We don’t take money for our work, it’s our duty to defend our country.” Contacted again this week, Th3Pro denied involvement in the attack.

In 2011, President Assad himself praised the SEA, describing the group as a “virtual army in cyberspace”, and experts dispute the SEA’s claims to be independent of Assad’s regime. James Lewis, a cyber-security expert at the Centre for Strategic and International Studies in Washington DC, said: “It would be possible for amateur beginners to do everything the SEA has done....  Ask yourself: are there any anti-Assad groups in Syria who have been able to carry out this kind of thing? If the answer is no, it means the government is either consenting to or directing SEA activity.”

Some have speculated that the intensity of the SEA’s attacks on US media outlets is linked to President Obama’s pronouncements on Syria. Analysis by the web intelligence firm Recorded Future suggests a “remarkable correlation” between Obama’s statements on Syria and the SEA’s activities. In August, for instance, as the President publicly weighed military action against the Assad regime following an alleged chemical attack in Damascus, the SEA launched a hack of the New York Times, Huffington Post and Twitter.

The attacks are rudimentary compared to some other spear-phishing hacks, says Graham Cluley, a British computer security expert. “There have been targeted spear-phishing attacks against defence organisations such as Lockheed Martin or the Pentagon,” Cluley says. “We also see a lot of state-sponsored attacks. For instance, the Tibetan government in exile and other Chinese dissidents are regularly sent emails containing booby-trapped documents, which infect their computer and install malware to allow the hackers access to steal information. And it’s not just China, by any means – everybody’s at it.”

Start your day with The Independent, sign up for daily news emails
PROMOTED VIDEO
Have you tried new the Independent Digital Edition apps?
ebooks
ebooksA year of political gossip, levity and intrigue from the sharpest pen in Westminster
Latest stories from i100
Have you tried new the Independent Digital Edition apps?
Independent Dating
and  

By clicking 'Search' you
are agreeing to our
Terms of Use.

iJobs Job Widget
iJobs General

Recruitment Genius: Account Manager

£20000 - £35000 per annum: Recruitment Genius: This full service social media ...

Recruitment Genius: Data Analyst - Online Marketing

£24000 - £35000 per annum: Recruitment Genius: We are 'Changemakers in retail'...

Austen Lloyd: Senior Residential Conveyancer

Very Competitive: Austen Lloyd: Senior Conveyancer - South West We are see...

Austen Lloyd: Residential / Commercial Property Solicitor

Excellent Salary: Austen Lloyd: DORSET MARKET TOWN - SENIOR PROPERTY SOLICITOR...

Day In a Page

Isis in Iraq: Yazidi girls killing themselves to escape rape and imprisonment by militants

'Jilan killed herself in the bathroom. She cut her wrists and hanged herself'

Yazidi girls killing themselves to escape rape and imprisonment
Ed Balls interview: 'If I think about the deficit when I'm playing the piano, it all goes wrong'

Ed Balls interview

'If I think about the deficit when I'm playing the piano, it all goes wrong'
He's behind you, dude!

US stars in UK panto

From David Hasselhoff to Jerry Hall
Grace Dent's Christmas Quiz: What are you – a festive curmudgeon or top of the tree?

Grace Dent's Christmas Quiz

What are you – a festive curmudgeon or top of the tree?
Nasa planning to build cloud cities in airships above Venus

Nasa planning to build cloud cities in airships above Venus

Planet’s surface is inhospitable to humans but 30 miles above it is almost perfect
Surrounded by high-rise flats is a little house filled with Lebanon’s history - clocks, rifles, frogmen’s uniforms and colonial helmets

Clocks, rifles, swords, frogmen’s uniforms

Surrounded by high-rise flats is a little house filled with Lebanon’s history
Return to Gaza: Four months on, the wounds left by Israel's bombardment have not yet healed

Four months after the bombardment, Gaza’s wounds are yet to heal

Kim Sengupta is reunited with a man whose plight mirrors the suffering of the Palestinian people
Gastric surgery: Is it really the answer to the UK's obesity epidemic?

Is gastric surgery really the answer to the UK's obesity epidemic?

Critics argue that it’s crazy to operate on healthy people just to stop them eating
Homeless Veterans appeal: Christmas charity auction Part 2 - now LIVE

Homeless Veterans appeal: Christmas charity auction

Bid on original art, or trips of a lifetime to Africa or the 'Corrie' set, and help Homeless Veterans
Pantomime rings the changes to welcome autistic theatre-goers

Autism-friendly theatre

Pantomime leads the pack in quest to welcome all
The week Hollywood got scared and had to grow up a bit

The week Hollywood got scared and had to grow up a bit

Sony suffered a chorus of disapproval after it withdrew 'The Interview', but it's not too late for it to take a stand, says Joan Smith
From Widow Twankey to Mother Goose, how do the men who play panto dames get themselves ready for the performance of a lifetime?

Panto dames: before and after

From Widow Twankey to Mother Goose, how do the men who play panto dames get themselves ready for the performance of a lifetime?
Thirties murder mystery novel is surprise runaway Christmas hit

Thirties murder mystery novel is surprise runaway Christmas hit

Booksellers say readers are turning away from dark modern thrillers and back to the golden age of crime writing
Anne-Marie Huby: 'Charities deserve the best,' says founder of JustGiving

Anne-Marie Huby: 'Charities deserve the best'

Ten million of us have used the JustGiving website to donate to good causes. Its co-founder says that being dynamic is as important as being kind
The botanist who hunts for giant trees at Kew Gardens

The man who hunts giants

A Kew Gardens botanist has found 25 new large tree species - and he's sure there are more out there