Pro-ISIS hackers hijacked the websites of roughly 800 US schools and educational districts on Monday, after compromising their web hosting provider, various news outlets have reported.
The hacking group Team System Dz claimed responsibility for the cyber-attack, which redirected users to a website displaying ISIS messages and a recruitment video, as well as an image of former Iraqi president Saddam Hussein, according to the International Business Times UK.
The websites' hosting services provider, Atlanta-based SchoolDesk, reportedly confirmed the attack, noting in a statement that it responded to the incident "immediately" by taking down the impacted websites.
"Our technical staff discovered that a small file had been injected into the root of one of the SchoolDesk websites, redirecting approximately 800 school and district websites to an iFramed YouTube page containing an audible Arabic message, unknown writing and a picture of Saddam Hussein," the statement reads. "Although the exact method and point of intrusion is not yet fully known (possibly an SQL injection or through a user account with a weak password), we have added multiple layers of redundant protection to prevent this from happening again, as well as taking many additional methods to research how this was accomplished and by whom."
The IBT UK further reports that educational districts in Connecticut, Louisiana, New Jersey, and Virginia were affected.
In June, Team System DZ attacked government websites in Ohio, Maryland and New York, defacing them with a pro-ISIS message that read, in part, "I Love Islamic state." The hackers used the same phrasing in the school cyber-attack.
Talking to SC Media UK about future threats from ISIL terrorists deprived of physical territory and taking their fight online, former head of the UK's GCHQ, Robert Hannigan, was asked about the group's likelihood of using WannaCry type attacks to cause chaos. He replied, "the most [technically] sophisticated ISIL people are not yet at a level to do this. They aspire to do chaotic and damaging attacks online. They have done defacement and DDoS attacks, but I don't think they are anywhere near having the capability to match their intent."
But he also warned, "That will happen over time – there's no question that in five to ten years terrorists will get into this commodity hacking area and realise that they can do a lot of damage. They're still fixated on physical damage and physical attacks. Some aspire to do these kind of attacks but they haven't got the capability yet but that will come. As with N Korea, they don't care about collateral damage and welcome it really. I don't think they're there yet.”