Feeds

Experts doubt Anonymous Mossad spy outing claims are kosher

Tinker, tailor, soldier, cobblers

Securing Web Applications Made Simple and Scalable

Hacktivists claim to have published leaked data on more than 30,000 Israeli officials, including members of Israel's Mossad secret service agency.

The boast by members of Anonymous follows a denial of service attack against the Mossad website (www.mossad.gov.il) over the weekend as part of the ongoing #OpIsrael protest. Previously obscure Anonymous affiliate Sector 404 launched the DDoS attack while elements of Anonymous and a Turkish hacker collective called RedHack carried out the data snatch and dump. Experts are however doubtful that leaked information is kosher.

The leaked data - including names, email addresses and physical addresses - were released in the form of spreadsheets through HackerLeaks, Google Docs and other sites and services. A small percentage of the leaked data include ID numbers and phone numbers.

Middle East Internet expert Dr Tal Pavel told the Times of Israel that the data probably referred to Israeli citizens but is unlikely to be a secret list of spies and members of the Israeli defence forces, as the hacktivists claim.

"There is no doubt that they got some identification information about Israelis, but the claims that they hacked the Mossad site and got a list of Mossad agents is most likely psychological warfare, and not a hack into an important database," says Pavel, who has downloaded and analysed the leaked documents.

The data contain many duplicate records, list people with homes in Palestinian towns and links to businesses addresses such as schools, show manufacturers and charities. Pavel, a professor at Tel Aviv University and director of the Middle East Internet Monitor website, reckons the information came from earlier breaches involving Israeli citizens, rather than a new attack against Mossad and the military.

Forbes is also skeptical, even going so far as to suggest that parts of the list had already appeared online months before last weekend's events and noting the implausibility of foreign-based Mossad operatives maintaining Israeli email addresses.

Neither the Israeli government nor Mossad has commented on the claimed breach. ®

Bootnote

#OpIsrael is building up to a planned attack on 7 April that aims at "erasing Israel from the internet" in protest against its treatment of the Palestinian people.

The smart choice: opportunity from uncertainty

More from The Register

next story
Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade
Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Don't look, Snowden: Security biz chases Tails with zero-day flaws alert
Exodus vows not to sell secrets of whistleblower's favorite OS
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Designing a Defense for Mobile Applications
Learn about the various considerations for defending mobile applications - from the application architecture itself to the myriad testing technologies.
Build a business case: developing custom apps
Learn how to maximize the value of custom applications by accelerating and simplifying their development.