Team Insane PK claims DDoS Attack on 44 Indian Banking and Finance Websites
CloudSEK’s contextual AI digital risk platform XVigil discovered a threat actor group claiming to have conducted a DDoS attack on 44 Indian banking and finance websites.
Updated on
May 29, 2023
Published on
May 22, 2023
Read MINUTES
6
Subscribe to the latest industry news, threats and resources.
Category: Adversary Intelligence Industry: Finance & Banking Motivation: Hacktivism Country: India Source*: D: Not usually Reliable 6: Difficult to Say
Executive Summary
On 16 May 2023, CloudSEK’s contextual AI digital risk platform XVigil discovered a threat actor group claiming to have conducted a DDoS attack on 44 Indian banking and finance websites.
This attack was done in retaliation to the cyber warfare occurring between Indian hacktivist teams like team UCC operations, Indian Cyber Force, and CyberXForce, and hacktivist teams belonging to Pakistan and Malaysia.
Snapshot from the group’s Telegram Channel
To establish proof of conducting a successful DDoS attack, evidence was shared along with the actor’s Telegram post. The actor’s shared links to check-host.net.
Check-host.net is a web utility that provides real-time information on whether a domain or an IP address is available and responsive - whenever a user tries to reach it.
Check host Snapshot for the Website status
Information from the Post
The Indian Banks and Finance websites targeted by the hacktivist group in this incident are:
Note: At the time of creating this report, many banks had functioning websites. However, it is worth noting that 18 banks were still experiencing website downtime and were unresponsive. (D) above signifies the website observing downtime.
More information and context about Underground Chatter
On-Demand Research Services
Global Threat Intelligence Feed
Protect and proceed with Actionable Intelligence
The Global Cyber Threat Intelligence Feed is an innovative platform that gathers information from various sources to help businesses and organizations stay ahead of potential cyber-attacks. This feed provides real-time updates on cyber threats, including malware, phishing scams, and other forms of cybercrime.