Hacker attacks major Israeli websites, temporarily shutting them down

An anonymous hacker could have brought parts of the Israeli economy to a halt over Shabbat, when it compromised hundreds of websites and destroyed nearly 1 million web pages.

By JERUSALEM POST STAFF
March 5, 2019 03:14
1 minute read.
Hacker attacks major Israeli websites, temporarily shutting them down

A message demanding money is seen on a monitor of a payment terminal after a cyber attack. (photo credit: VALENTYN OGIRENKO/REUTERS)

 
X

Dear Reader,
As you can imagine, more people are reading The Jerusalem Post than ever before. Nevertheless, traditional business models are no longer sustainable and high-quality publications, like ours, are being forced to look for new ways to keep going. Unlike many other news organizations, we have not put up a paywall. We want to keep our journalism open and accessible and be able to keep providing you with news and analysis from the frontlines of Israel, the Middle East and the Jewish World.

As one of our loyal readers, we ask you to be our partner.

For $5 a month you will receive access to the following:

  • A user experience almost completely free of ads
  • Access to our Premium Section
  • Content from the award-winning Jerusalem Report and our monthly magazine to learn Hebrew - Ivrit
  • A brand new ePaper featuring the daily newspaper as it appears in print in Israel

Help us grow and continue telling Israel’s story to the world.

Thank you,

Ronit Hasin-Hochman, CEO, Jerusalem Post Group
Yaakov Katz, Editor-in-Chief

UPGRADE YOUR JPOST EXPERIENCE FOR 5$ PER MONTH Show me later

An anonymous hacker could have brought parts of the Israeli economy to a halt over Shabbat, when it compromised hundreds of websites and destroyed nearly 1 million web pages.

According to media reports, an attempt to infest websites with ransomware that would lock administrators out until they agreed to pay to get back in was made by a hacker who simultaneously defaced several sites with the words, “Jerusalem is the capital of Palestine.”
The hacker got in due to a vulnerability that existed in a third-party accessibility plug-in called Nagich, which means accessibility in Hebrew, and helps make Israeli websites accessible for the disabled. Experts said the move was achieved by taking control of a record on a DNS server of the Nagich service domain name that allowed the hackers to redirect traffic to a server that it controls rather than the original server. 


Nagich had neglected some basic security measures, according to reports.


By law, Israeli websites providing public service must be accessible to those with disabilities. Among Nagich’s clients and the sites that were affected are McDonalds, Coca-Cola, Bank HaPoalim, Partner, 012 Mobile and Golan Telecom, as well as several news sites, including Ynet. Calcalist and Makor Rishon.


Nagich managed to stop the breach in about 20 minutes, though some website remained unusable for up to an hour. 


Programmer Ran Bar-Zik, who works at Verizon Media, posted about the attempt after he helped halt it. He criticized the company for “incredible negligence, about which warning have been sounded in the recent past” and said that “the hackers could have caused billions in damage instead of mere vandalism.”


Join Jerusalem Post Premium Plus now for just $5 and upgrade your experience with an ads-free website and exclusive content. Click here>>

Related Content

Adv. Nimrod Vromen (L) and Adv. Noa Mayer (R) of Yigal Arnon & Co. Law Firm
March 24, 2019
New online platform aims to offer start-ups runway to success

By EYTAN HALON