Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

New York Times Says Outage May be ‘Malicious’ Attack

NEW YORK CITY – The New York Times said its website went down Tuesday after what appeared to be a “malicious external attack.”

A security researcher said there were indications that the Syrian Electronic Army, which has attacked several media organizations, was the culprit.

NEW YORK CITY – The New York Times said its website went down Tuesday after what appeared to be a “malicious external attack.”

A security researcher said there were indications that the Syrian Electronic Army, which has attacked several media organizations, was the culprit.

Times spokeswoman Eileen Murphy made the announcement on Twitter, two weeks after the site went offline due to what the daily said was an internal server problem.

Her full tweet said: “re: http://nytimes.com – initial assessment – issue is most likely result of malicious external attack. working to fix.” The newspaper’s main Twitter account said shortly after 2000 GMT that the website “is experiencing technical difficulties” but that news was still being published via Twitter and other links.

Matt Johansen of WhiteHat Security said in a tweet that the technical aspects of the website during the outage were “pointing to Syrian Electronic Army.”

A message fired off at a Syrian Electronic Army account at Twitter proclaimed “Media is going down” and included links to the New York Times.

The SEA also claimed to have attacked Twitter, which remained accessible in the US.

The Washington Post website was hacked this month in an attack blamed on the Syrian Electronic Army, a group that backs embattled strongman Bashar al-Assad.

Advertisement. Scroll to continue reading.

The Times said in January that hackers stole its corporate passwords and accessed the personal computers of 53 employees after the newspaper published a report on the family fortune of China’s Premier Wen Jiabao.

—-

SecurityWeek Editor’s NoteThe Syrian Electronic Army has been responsible for other recent attacks, including ones that targeted the AFP’s Twitter account and three CBS News accounts, in order to spread propaganda supporting Syria’s President Assad. In May, the group hacked into the Associated Press’s Twitter account and falsely reported that President Barack Obama had been injured after two blasts at the White House.

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Data Breaches

LastPass DevOp engineer's home computer hacked and implanted with keylogging malware as part of a sustained cyberattack that exfiltrated corporate data from the cloud...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Incident Response

Microsoft has rolled out a preview version of Security Copilot, a ChatGPT-powered tool to help organizations automate cybersecurity tasks.

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.