iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
The threat group appears to have collaborated with a number of other well-known threat actors, including RipperSec and NoName057(16), to launch attacks on Australian organisations.
An Australian disability services organisation has restored services after its website was defaced by threat actors.
Western Australia-based Onestep Disability Services had its site defaced by the Malaysian, pro-Palestinian DXPLOIT threat group today (4 December) to display pro-Islamic content.
“PAWNED BY DXPLOIT,” the site said, accompanied by the threat group’s logo.
“WE ARE THE VOICE OF THE FORGOTTEN, DEFENDERS IN THE CYBERWORLD, STANDING AGAINST OPPRESSION EVERYWHERE.
“WE ARE HERE NOT FOR FAME, BUT TO UPHOLD A MESSAGE: ISLAM IS THE RELIGION OF PEACE, AND MUSLIMS ARE NOT TERRORISTS. TRUE ISLAM DEFENDS AGAINST INJUSTICES AND RESPECTS HUMANITY.”
The message continues, reiterating that Islam is a peaceful religion, before ending with the term “GREETZ”.
OneStep Disability Services was unaware of the defacement when Cyber Daily reached out and disclosed the incident, but it promptly restored services.
“This morning, we were alerted to a defacement of our website by a group identifying itself as DXPLOIT,” the organisation said in a statement to Cyber Daily.
“We want to assure our users and stakeholders that we do not store any participant or personal information on our website. As a result, no personal data was accessed or compromised during this incident.
“Upon discovery, we immediately contacted our web hosting provider, GoDaddy, and took swift action to resolve the issue. We are pleased to confirm that the website is now fully operational.
“This incident serves as an important reminder for website owners to invest in premium security measures and stay vigilant against emerging cyber threats. Strengthening security protocols can play a crucial role in deterring such attacks.
“We remain committed to maintaining the integrity of our digital platforms and will continue to monitor and enhance our cyber security measures.”
While the site has been restored, the defacement is a sign of increasing activity by DXPLOIT.
Maitland Lutheran Parish in NSW was also hit with the same defacement and message. Cyber Daily has reached out to the parish for more information.
While DXPLOIT’s motives for the latest series of attacks are yet to be fully realised, it appears that the group is bolstering itself with a series of alliances to up its capabilities.
Within these defacement messages, DXPLOIT also mentions a number of other threat actors in hashtags, including NoName057(16), RipperSec, Anonymous Guys, and Al Ahad.
Earlier this month, Anonymous Guys announced it was forming a new hacktivist alliance with Al Ahad and DXPLOIT.
According to FalconFeeds.io, the groups have increased their activity on organisations from a number of countries, including Australia.
🚨 Alert: New Hacktivist Alliance 🚨
— FalconFeeds.io (@FalconFeedsio) December 1, 2024
Anonymous Guys has officially announced a new alliance with Al Ahad and DXPLOIT. They have recently been targeting Australia, Israel, Ukraine, Nigeria, Canada, UK, Pakistan, India, USA, Ethiopia, Portugal, Thailand, Taiwan, Germany, Nepal.… pic.twitter.com/ebByK3O9We
Additionally, last month, FalconFeeds.io also noted that DXPLOIT was “collaborating” with RipperSec to form “OpsAustralia” to launch attacks on Australian organisations.
🚨 Alert🚨
— FalconFeeds.io (@FalconFeedsio) October 23, 2024
A recent post by DXPLOIT indicates they are collaborating with RipperSec to launch attacks on Australia under ’OpsAustralia’. This action is in response to Australia’s support for Israel.#Australia #CTI #ThreatIntel #InfoSec #CyberAttack pic.twitter.com/7U6O5vT4Rv
And again, three months ago, FalconFeeds.io also noted an alliance that formed between DXPLOIT and NoName057(16).
🚨 Alert: New Hacktivist Alliance🚨
— FalconFeeds.io (@FalconFeedsio) August 23, 2024
A new alliance has been identified between NoName and DXPLOIT.#cti #threatintel #infosec #Cyberattack pic.twitter.com/F0U9lw99yM
This is an ongoing story. Cyber Daily will provide an update as DXPLOIT’s activity continues to develop.
Be the first to hear the latest developments in the cyber industry.
