TRENDING:

Anonymous Targets World Cup

Attacks Hit Government, Corporate Sites Jeffrey Roman (gen_sec) • June 12, 2014    
Anonymous Targets World Cup

The loose collective of hacktivists known as Anonymous is taking aim at the 2014 World Cup, waging attacks that are making government websites in Brazil, as well as the sites of corporate sponsors of the event, inaccessible.

See Also: Evolving Cybercriminal Attack Methods

Brazil's official website for the World Cup was offline June 12, with members of Anonymous claiming responsibility for the attack on Twitter.

Security firm Symantec, in a June 11 blog post, highlighted the threat Anonymous posed to the World Cup. "The hacker group is preparing cyber-attacks on corporate sponsors of the World Cup in Brazil to protest the spending of money on soccer games instead of public services," Symantec says.

Anonymous hackers told Reuters on June 11 that they have taken down several Brazilian websites linked to the tournament, including car manufacturer Hyundai, a state government and Brazil's intelligence agency.

"Companies and institutions that work with a government that denies the basic rights of its people in order to promote a private, exclusive and corrupt sports event will be targeted," a representative for the group told Reuters.

The operation is known by the hashtags #OpHackingCup, #OpWorldCup and #OpMundial2014 on Twitter. An infographic published on Twitter lists the websites allegedly impacted by Anonymous.

Anonymous, in a press release detailing the operation, says it's pursuing attacks against the government of Brazil because of their "corruption and actions against the people."

Mitigating the Threat

Symantec recommends that organizations use a layered approach to securing their environment from the attack. "Deploy network intrusion detection/prevention systems to monitor network traffic for malicious activity," the company says. "Ensure all Web servers are patched, configured to minimize the impact of DDoS [distributed-denial-of-service] attacks, and hardened against external threats."

Additionally, organizations should use Web application firewalls as a front-line defense against attacks, Symantec says. "Ensure your IT and IT security staff are prepared and know what they need to do in the event of attack."

Al Pascual, a security and fraud analyst at Javelin Strategy and Research, notes: "Many of the larger sponsors may already be able to absorb the effects of a DDoS attack, but smaller sponsors could benefit from overprovisioning of bandwidth as a temporary solution. The best thing these sponsors can do is to be prepared, and to avoid giving any public recognition of Anonymous should their sites go down temporarily."

Previous
Industry News: SafeNet Appoints CEO
Next
P.F. Chang's Confirms Card Breach

About the Author

Jeffrey Roman

Jeffrey Roman

News Writer, ISMG

Roman is the former News Writer for Information Security Media Group. Having worked for multiple publications at The College of New Jersey, including the College's newspaper "The Signal" and alumni magazine, Roman has experience in journalism, copy editing and communications.



Around the Network

How 'Security by Default' Boosts Health Sector Cybersecurity
How 'Security by Default' Boosts Health Sector Cybersecurity
Evolving Threats Facing Robotic and Other Medical Gear
Evolving Threats Facing Robotic and Other Medical Gear
Is It Generative AI's Fault, or Do We Blame Human Beings?
Is It Generative AI's Fault, or Do We Blame Human Beings?
Safeguarding Critical OT and IoT Gear Used in Healthcare
Safeguarding Critical OT and IoT Gear Used in Healthcare
Transforming a Cyber Program in the Aftermath of an Attack
Transforming a Cyber Program in the Aftermath of an Attack
Properly Vetting AI Before It's Deployed in Healthcare
Properly Vetting AI Before It's Deployed in Healthcare
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
How the NIST CSF 2.0 Can Help Healthcare Sector Firms
Protecting Medical Devices Against Future Cyberthreats
Protecting Medical Devices Against Future Cyberthreats
Medical Device Cyberthreat Modeling: Top Considerations
Medical Device Cyberthreat Modeling: Top Considerations
Identity Security and How to Reduce Risk During M&A
Identity Security and How to Reduce Risk During M&A

Continue »

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing databreachtoday.co.uk, you agree to our use of cookies.