NoName057(16) has claimed attacks on Italian entities

The pro-Russian hacking group, NoName057(16), has claimed responsibility for the recent cyberattacks against Italian organisations, such as banks, businesses, and government agencies. The attack caused service disruptions by flooding the victims’ networks.

According to an Italian cybersecurity agency, it spotted DDoS attacks against the websites of about five banks, including one of the largest financial institutions in Italy. In a distributed denial-of-service attack, the attackers flood junk traffic to a targeted entity to disrupt its operations.

 

NoName057(16) threat group launched their cyberattack earlier this month against Italian orgs.

 

Russia’s NoName057(16) attackers launched their cyberattacks on Italy earlier this month and have an ongoing campaign on numerous Italian services.

Moreover, the pro-Russian cybercriminal group claimed they had compromised the websites of a water supply company, public transport website, and a national business newspaper. Researchers also noticed that the websites of the alleged hacked company are still inaccessible.

Experts believe these Russian attacks could be part of the geopolitically motivated hacks against countries supporting Ukraine. These claims could relate to a Telegram post where the NoName057(16) operators called the Italian government officials “Russophobes, implying that they hate Russians.

Additionally, the attackers reminded everyone that they note individuals expressing such behaviour towards Russia.

The NoName057(16) campaigns became prevalent during its attacks against Ukraine and its supporters since the start of the conflict in March last year. The most notable attacks of these hackers are against Poland’s tax service website and candidates’ websites in the Czech Republic’s election.

Researchers revealed that the group primarily operates via Telegram. The actors also use the platform to disclose their claims and threaten their victims. Furthermore, most of the NoName057(16) group’s cybercriminal operation is DDoS while using a malicious tool called DDoSia.

The group have also utilised the malicious toolkit against numerous government agencies, private companies, and media in various European countries, including Poland, Lithuania, Italy, and Ukraine.

Experts claimed that the threat actors focus their attacks on these countries since they are the most expressive of their support against Ukraine and oppose Russia’s plans. Organisations in these countries should remain vigilant against such campaigns since pro-Russian hackers will continue to support Russia through cybercriminal attacks.