Russian Hackers Shut Down US State Government Websites

A hacking attack group with connections to the Russian government has claimed credit for cyber attacks on the government websites of 3 US States.

The group, which calls itself Killnet, have temporarily disabled websites run by the governments of Colorado, Kentucky and Mississippi.

Images being shared on the group’s Telegram channel show a target list including sites run by dozens of US state governments.

The sites for Mississippi and Kentucky were functioning again the next day on Thursday 6th October, following the Russian cyber attacks, while the Colorado State Official Web Portal was displaying a message that the "homepage is currently offline," earlier in the day. By Thursday afternoon, the homepages were back online.

Reports of the attacks by the so-called Killnet hacktivist group is particularly alarming in light of upcoming November US mid-term elections, which rely on individual states to administer voting.

"In the case of these state government websites, the disruption of service, while inconvenient, is far less of a problem than a data breach involving the theft of personally identifiable information," Erich Kron, security awareness advocate with KnowBe4, said in an emailed statement in reaction to news of the cyber attack.

"Whether it's the defacement of websites, or taking them offline with attacks such as distributed denial-of-service (DDoS) attacks, it does erode public trust in the organisations that these websites represent."

The group’s also targeted US websites before, including that of Bradley International Airport in Hartford, Connecticut, as well as Congress.gov.

Killnet was also one of several groups included in a Five-Eyes alert earlier this year warning of Russian state-sponsored and criminal threats, including DDoS attacks against critical infrastructure.

Dark Reading:     CNN:    Statescoop:     CISA:   SiliconAngle:     NBC:    Flipboard

You Might Also Read: 

Killnet Turn Their Attention To Lockheed Martin:

 

« Former Uber Security Chief Convicted
Singtel’s Australian Subsidiary Dialog Breached »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

ZenGRC

ZenGRC

ZenGRC - the first, easy-to-use, enterprise-grade information security solution for compliance and risk management - offers businesses efficient control tracking, testing, and enforcement.

Qolcom

Qolcom

Qolcom is a leading UK based integrator of secure wireless network and mobile device management solutions.

CloudCheckr

CloudCheckr

CloudCheckr is a next-gen cloud management platform that unifies Security & Compliance, Inventory & Utilization and Cost Management.

Cyber Future Foundation (CFF)

Cyber Future Foundation (CFF)

CFF was established to create a cyberspace where digital commerce and innovation can thrive based on trust and respect to individual privacy.

DFLabs

DFLabs

DFlabs is a pioneer in Security Automation & Orchestration technology, leveraging your existing security products to dramatically reduce the response and remediation gap.

XTN Cognitive Security

XTN Cognitive Security

XTN is focused on the development of security, Fraud and Mobile Threat Prevention advanced behaviour-based solutions.

Cytenna

Cytenna

Cytenna Signal is a suite of SaaS (Software-as-a-Service) products that use AI and machine learning to automatically aggregate the latest information about software vulnerabilities.

The Citadel Department of Defense Cyber Institute (CDCI)

The Citadel Department of Defense Cyber Institute (CDCI)

CDCI is established to address the critical national security needed for a skilled cybersecurity workforce.

Cybolt

Cybolt

Cybolt helps companies, organizations, and governments manage digital risks and live in an environment of confidence and certainty.

SignalFire

SignalFire

SignalFire invest across both enterprise and consumer sectors at the seed and early growth stages.

Entech

Entech

Entech is a managed IT service provider. We work behind the scenes on your network to ensure data security and integrity.

Muscope Cybersecurity

Muscope Cybersecurity

Muscope CYSR platform performs a risk assessment and offers a comprehensive overview of the potential cyber attack risks.

The Cyber Scheme

The Cyber Scheme

The Cyber Scheme provides NCSC certified and assured assessments, training and career support for security testers & technical cyber professionals.

SecZone

SecZone

SecZone is a Chinese enterprise with a mission to "Make It Secure." We are dedicated to driving software security innovation globally.

BioID

BioID

BioID are a German company offering deepfake detection, liveness detection, facial authentication & identity verification as a Service. 

Simbian

Simbian

Simbian, with its hardened TrustedLLM system, is the first to accelerate security by empowering every member of a security team from the C-Suite to frontline practitioners.

GlassHouse Technology

GlassHouse Technology

GlassHouse supports customers in their digitalization journey with our deep technical expertise in Managed Cloud and Security Services, SAP Infrastructure Service and Business Continuity Services.