The Islamic State’s technical experts are getting along better thanks to a recent merger between groups, according to a new analysis from security firm Flashpoint.
“Until recently, our analysis of the group’s overall capabilities indicated that they were neither advanced nor did they demonstrate sophisticated targeting,” said Flashpoint co-founder Laith Alkhouri, who also serves as the group’s director of research for the Middle East and North Africa.
Related Story: http://www.washingtonexaminer.com/article/2589469
“With the latest unification of multiple pro-ISIS cybergroups under one umbrella, there now appears to be a higher interest and willingness amongst ISIS supporters in coordinating and elevating cyberattacks against governments and companies,” Alkhouri said.
The firm noted that at least five similar groups fell under the Islamic State umbrella for a majority of the terror group’s existence, and the main division, the “Cyber Caliphate Army,” was formed in 2014. That group announced it was changing its name to the “United Cyber Caliphate” in early April, suggesting it had merged with its counterparts.
The group or its predecessors have taken credit for several incidents over the last year that involved disseminating American “kill lists.” Those lists have included information on hundreds of military and law enforcement officials, though most or all of that data was publicly available online.
Related Story: http://www.washingtonexaminer.com/article/2586040
“As pro-ISIS cyberattacks and capabilities have gradually increased over time but remained relatively unsophisticated, it is likely that in the short run, these actors will continue launching attacks of opportunity,” Flashpoint said. Likely attacks include “finding and exploiting vulnerabilities in websites” and launching attacks aimed at crashing websites.
However, the firm said, the group could have more troubling capabilities on the horizon. “Pro-ISIS cyberactors are demonstrating an upward trajectory … Advanced targeting and exfiltration are not far-fetched if the group is able to recruit outside experts into its fold,” the report added. “The advancement of cybercapabilities [by] pro-ISIS actors largely depends on the group’s ability to bring in a technological savvy, diverse group of people with broad technical skills.”
