Major Cyberattack on Internet Archive: A Pro-Palestinian Hacktivist Claims Responsibility

In a shocking turn of events, a pro-Palestinian hacktivist group has claimed responsibility for a significant cyberattack on the Internet Archive, a widely used digital library known for its Wayback Machine. This breach has exposed the personal data of approximately 31 million users, raising urgent concerns about data privacy and the security of one of the internet’s most valuable resources.

The Breach Unveiled

The cyberattack came to light on October 9, 2023, when users began receiving alarming notifications about the exposure of their personal information. The breach was facilitated through an exploited JavaScript (JS) library on the Internet Archive’s website, which allowed the attackers to access sensitive data, including email addresses, screen names, and encrypted passwords. A pop-up message on the site bluntly stated, "Have you ever felt like the Internet Archive runs on sticks and is constantly on the verge of suffering a catastrophic security breach? It just happened. See 31 million of you on HIBP!" This message directed users to the service Have I Been Pwned?, which helps individuals determine if their data has been compromised in a breach.

Troy Hunt, the founder of Have I Been Pwned?, confirmed that he received a 6.4 GB database file from the attackers, which contained the personal information of 31 million unique email addresses. Notably, Hunt pointed out that over half of these email addresses had already been involved in previous data breaches, highlighting the ongoing vulnerabilities in digital security.

Internet Archive’s Response

In the wake of the breach, Brewster Kahle, the founder of the Internet Archive, acknowledged the severity of the situation. He reported that the platform was also facing ongoing Distributed Denial-of-Service (DDoS) attacks, which had intermittently taken the website offline. In a post on X (formerly Twitter), Kahle provided an update on the situation, stating, "What we know: DDOS attack fended off for now; defacement of our website via JS library; breach of usernames/email/salted-encrypted passwords. What we’ve done: Disabled the JS library, scrubbing systems, upgrading security. Will share more as we know it."

Despite these initial measures, users have continued to experience difficulties accessing the Internet Archive and its Wayback Machine, as the organization scrambles to enhance its security protocols and mitigate the damage caused by the breach.

The Hacktivist Group Behind the Attack

The group claiming responsibility for the attack, known as "SN_BlackMeta," has a history of targeting various organizations, particularly those associated with Middle Eastern financial institutions. Their motivations appear to be rooted in pro-Palestinian sentiments, as they have publicly stated that their actions were a response to perceived injustices related to the Israeli-Palestinian conflict.

In a post on X, SN_BlackMeta declared, "The Internet Archive has and is suffering from a devastating attack. We have been launching several highly successful attacks for five long hours and, to this moment, all their systems are completely down." This statement was accompanied by a community note that clarified the group’s rationale: "This group claims they took down the Internet Archive because it ‘belongs to the USA … who support Israel,’ which is not true. The Archive is not the US government; it is a nonprofit that includes many resources about Palestine, which we can’t now access because of this attack."

Implications for Data Privacy and Security

The breach of the Internet Archive raises critical questions about data privacy and the security measures employed by digital platforms. As users are urged to change their passwords immediately, cybersecurity experts emphasize the importance of robust security practices, including the use of unique passwords and two-factor authentication.

This incident serves as a stark reminder of the vulnerabilities inherent in our increasingly digital world. As more individuals and organizations rely on online platforms for information and resources, the need for enhanced cybersecurity measures becomes ever more pressing.

Conclusion

The cyberattack on the Internet Archive is a significant event that underscores the intersection of technology, activism, and data security. As the organization works to recover from this breach and bolster its defenses, users must remain vigilant about their online security. The implications of this attack extend beyond the immediate loss of data; they highlight the ongoing challenges faced by digital platforms in safeguarding user information in an era of heightened cyber threats.