07 December 2023

NoName057 attack campaign in europe

From 15 to 16 January 2023, the pro-Russian hacktivist group Noname057 continued their DDoS attack campaign targeting institutions and organisations in the Czech Republic and Denmark. In Denmark, the group claimed DDoS attacks against the Bankinvest website address and its authorisation subdomain, but also the Ministry of Finance website for the second time. In the Czech Republic the claimed targets are: the website of the bus and trolleybus manufacturer SOR, the website of the Czech metal cutting machine tool development and production plant TAJMAC-ZPS, the portal of the lifting, construction and warehouse equipment manufacturer TOR INDUSTRIES, the website of the SOR factory, and the government website for monitoring the results of the country's various elections.

These attacks are part of Noname057's campaign to support the Russian government's political efforts against European countries.

These coordinated and numerous attacks appear to be effective and will therefore have a potentially significant impact on businesses, their customers and citizens in both countries. Indeed, it is likely that bank customers will temporarily be unable to access their accounts online, and that affected businesses will have their storefronts affected for an unknown period of time. The effectiveness of their DDoS attacks is probably due to the fact that their new type of bot network with paid affiliates is easier to run, is entirely under their control, and mobilises much greater attack power.