In their latest post, cybercriminal RansomedVC has expressed interest in purchasing access to systems in Iran and other conflict-ridden areas such as Gaza and Palestine, potentially for the purpose of obtaining system data related to the ongoing Israel-Hamas conflict.
RansomedVC has made headlines for endorsing the data they offer for sale without engaging in the act of exfiltration themselves.
This was seen in the case of the alleged Sony data leak case. A user on the hacker forum claimed that they had the Sony data and that RansomedVC was lying.
“RansomedVC has announced that they are looking for access in Iran, Palestine, and Gaza affiliate countries,” read the tweet by Daily Dark Web, who posted a screenshot of the dark web post by RansomedVC.
Gaining access to organizations in Gaza and Iran could allow hackers to exfiltrate data and then use it to target individuals with specially crafted phishing emails.
Access to Iran, Israel-Hamas War and Potential Online Cybercrimes
Israel’s government declared war against Hamas militants in Gaza. Last weekend, a music concert in an Israeli desert turned into a horror scene for visitors when militants barged in, shot several people, and took others hostage including Israeli soldiers.
This was done by Palestinian Hamas militant groups from the Gaza Strip who also raided 22 Israeli towns. Israel responded to the Hamas attack with airstrikes on Gaza.
Following these events, families of the deceased, and those held hostage have been looking for information about them. Phones, emails, and other social media have been abuzz with statements and comments about the Hamas attack and the brutality thereafter.
However, not all information found online about the Israel-Hamas conflict could be trusted. The news about RansomedVC looking for access to Iran and Palestine can mean more misinformation and data breaches of connected organizations.
This can further create chaos and lead to misguiding people in the wrong direction with cloned websites of the government, and other organizations. Hence, it is advisable to watch for scams that might surface on social media, through SMS, chatting platforms, and search results.
Israel has declared cutting the supply of essential needs to the Gaza Strip which has been effective since Saturday leaving people helpless.
People across the globe looking for ways to gain knowledge about the Israel-Hamas conflict or help find their family members must maintain caution not to trust online sources that are not verified.
This could be exploited by petty cybercriminals and ransomware groups that look for ways to dupe donors and supporters. While RansomedVC has been found looking to access Iran, and Gaza, others might also be doing the same.
Several hackers have already claimed cyberattacks on organizations involved on either side of the Israel-Hamas war. Hence, it won’t be a surprise if fraudulent communications have started getting circulated.
The news also implicates Iran in potential support for militants in Gaza. RansomedVC’s interest in gaining access to both Iran and Gaza raises concerns about their intent, possibly with the intention to subsequently sell exfiltrated information on the dark web for illicit purposes.
While the situation is dire, it requires cautious action from governments and organizations to help victims of war and geopolitical conflicts. They can verify information with tools and resources that not all individuals may possess.
Relatives of those impacted in the Hamas attack and subsequent attacks and others looking to donate, or offer support must maintain caution not to click on links in any communications received from organizations. These emails and messages can take users to duplicated websites with fraudulent images and videos fabricated via deep-fakes technology.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.