1 Hosting Hack, 40 Israeli Leaks: Cyber Toufan’s Shadowy Strike

Cyber Toufan

According to the cyber intelligence platform FalconFeedsio, an emerging Iranian hacking group named Cyber Toufan recently disclosed stolen data from 49 Israeli companies. Experts believe this mass data theft stemmed from the breach of Signature-IT, a company providing hosting services to approximately 40 firms nationwide.

Cyber Toufan first made its presence known on November 16, 2023 and has since claimed responsibility for hacking several major organizations. The perpetrators assert that they have destroyed over 1,000 servers and databases.

FalconFeedsio reports that among the victims of this leak were Israel Innovation Authority, Toyota Israel, the Ministry of Welfare and Social Security, Ikea Israel, and numerous others.

Experts from Check Point Software Technologies opine that the targeted IT firms were deliberately chosen due to some providing services to American markets and overseas organizations. For example, Radware supplies solutions to many large companies in the USA.

Thus, by infiltrating these Israeli firms, the Iranian hackers simultaneously inflict damage on their American clients, effectively “killing two birds with one stone.”

The attack on Signature-IT vividly illustrates the rapidly evolving landscape of cyber threats. Hacking a hosting provider to gain access to dozens of targets underscores the importance of robust cyber defense and vigilance among employees.

The cyber war between Israel and Iran continues to escalate. Recently, the Israeli group Sparrow claimed responsibility for a major disruption in Iranian gas stations, paralyzing 70% of the fueling stations.

Israel and the USA issued a joint warning about ongoing malicious cyber activities by Iran targeting water supply systems and other infrastructure sectors. Israel also reported an attempt by Iran to attack a medical center in Safed.

Here is the list of the unfortunate victims allegedly affected by this cyber operation:

  • ACE Hardware
  • Shefa Offline
  • National Archive
  • Radware
  • MAX Security & Intelligence
  • Israel Innovation Authority
  • Ikea Israel
  • Berkshire eSupply’s
  • Keter Group
  • ISCAR Ltd.
  • Homecenter Israel
  • Israel Nature and Parks Authority
  • The Academic College of Tel Aviv (MTA)
  • Lumenis
  • Toyota Israel
  • H&O for Schools
  • Israeli Ministry of Health
  • SodaStream
  • Toys “R” Us Israel
  • Camel Grinding Wheels (CGW)
  • RESERVED Israel
  • SEACRET Australia
  • Carter’s Oshkosh Israel
  • Hagarin
  • Osem Israel
  • Bermad Israel
  • ZapGroup Israel
  • Novolog
  • Semicom
  • Kravitz
  • Biopet
  • GS1 Israel
  • Audi Dagan Insurance Agency Ltd.
  • Ministry of Welfare and Social Security
  • Scope Metals Group Ltd
  • SpaceX
  • Brother
  • Graf
  • Dorot
  • CURVER
  • Techno-Rezef
  • Ta-Supply
  • NaanDan
  • USTG
  • StraussGroup
  • ZokoEnterprise
  • TEFEN Flow and Dosing Technologies Ltd.
  • Erco
  • Teldor

This incident once again demonstrates the intricate interconnectedness of the modern digital world and the critical need for protective measures for confidential information.