{"id":1463,"date":"2023-07-03T18:35:12","date_gmt":"2023-07-03T18:35:12","guid":{"rendered":"https:\/\/cyberscoop.com\/?p=75222"},"modified":"2023-07-03T18:35:12","modified_gmt":"2023-07-03T18:35:12","slug":"hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems","status":"publish","type":"post","link":"https:\/\/ddi.mohflo.net\/index.php\/2023\/07\/03\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems\/","title":{"rendered":"Hacking crew targeting states over transition bans claims cyberattack hitting global satellite systems"},"content":{"rendered":"<p><head> <meta charset=\"UTF-8\"> <meta name=\"viewport\" content=\"width=device-width, initial-scale=1\"> <meta name=\"robots\" content=\"index, follow, max-image-preview:large, max-snippet:-1, max-video-preview:-1\"> <!-- This site is optimized with the Yoast SEO Premium plugin v20.5 (Yoast SEO v20.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ --> <title>Hacking crew targeting states over transition bans claims cyberattack hitting global satellite systems | CyberScoop<\/title> <meta name=\"description\" content=\"A group that previously hacked Fort Worth, Texas, claimed a cyberattack that affected Halliburton, Shell, Helix Energy and Oceaneering.\"> <link rel=\"canonical\" href=\"https:\/\/cyberscoop.com\/siegedsec-hack-transition-bans-satellite-systems\/\"> <meta property=\"og:locale\" content=\"en_US\"> <meta property=\"og:type\" content=\"article\"> <meta property=\"og:title\" content=\"Hacking crew targeting states over transition bans claims cyberattack hitting global satellite systems\"> <meta property=\"og:description\" content=\"A group that previously hacked Fort Worth, Texas, claimed a cyberattack that affected Halliburton, Shell, Helix Energy and Oceaneering.\"> <meta property=\"og:url\" content=\"https:\/\/cyberscoop.com\/siegedsec-hack-transition-bans-satellite-systems\/\"> <meta property=\"og:site_name\" content=\"CyberScoop\"> <meta property=\"article:published_time\" content=\"2023-07-03T18:35:12+00:00\"> <meta property=\"article:modified_time\" content=\"2023-07-03T18:36:10+00:00\"> <meta property=\"og:image\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg\"> <meta property=\"og:image:width\" content=\"1920\"> <meta property=\"og:image:height\" content=\"1283\"> <meta property=\"og:image:type\" content=\"image\/jpeg\"> <meta name=\"author\" content=\"AJ Vicens\"> <meta name=\"twitter:card\" content=\"summary_large_image\"> <meta name=\"twitter:creator\" content=\"@AJVicens\"> <!-- \/ Yoast SEO Premium plugin. --> <link rel=\"dns-prefetch\" href=\"\/\/cdn.parsely.com\">\n<link rel=\"dns-prefetch\" href=\"\/\/securepubads.g.doubleclick.net\">\n<link rel=\"dns-prefetch\" href=\"\/\/use.typekit.net\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Feed\" href=\"https:\/\/cyberscoop.com\/feed\/\">\n<link rel=\"alternate\" type=\"application\/rss+xml\" title=\"CyberScoop \u00bb Comments Feed\" href=\"https:\/\/cyberscoop.com\/comments\/feed\/\"> <link rel=\"stylesheet\" id=\"all-css-0\" href=\"https:\/\/cyberscoop.com\/wp-includes\/css\/dist\/block-library\/style.min.css?m=1687285576g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-2\" href=\"https:\/\/cyberscoop.com\/wp-content\/mu-plugins\/search\/elasticpress-next\/dist\/css\/related-posts-block-styles.min.css?m=1688069074g\" type=\"text\/css\" media=\"all\"> <link rel=\"stylesheet\" id=\"all-css-4\" href=\"https:\/\/cyberscoop.com\/wp-content\/themes\/scoopnewsgroup\/dist\/css\/frontend.css?m=1687962474g\" type=\"text\/css\" media=\"all\">\n<link rel=\"stylesheet\" id=\"typekit-css\" href=\"https:\/\/use.typekit.net\/itk2qbh.css?ver=172264176d4de0f97962\" media=\"all\"> <link rel=\"https:\/\/api.w.org\/\" href=\"https:\/\/cyberscoop.com\/wp-json\/\"><link rel=\"alternate\" type=\"application\/json\" href=\"https:\/\/cyberscoop.com\/wp-json\/wp\/v2\/posts\/75222\"><link rel=\"EditURI\" type=\"application\/rsd+xml\" title=\"RSD\" href=\"https:\/\/cyberscoop.com\/xmlrpc.php?rsd\">\n<link rel=\"wlwmanifest\" type=\"application\/wlwmanifest+xml\" href=\"https:\/\/cyberscoop.com\/wp-includes\/wlwmanifest.xml\">\n<meta name=\"generator\" content=\"WordPress 6.2.2\">\n<link rel=\"shortlink\" href=\"https:\/\/cyberscoop.com\/?p=75222\">\n<link rel=\"alternate\" type=\"application\/json+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fsiegedsec-hack-transition-bans-satellite-systems%2F\">\n<link rel=\"alternate\" type=\"text\/xml+oembed\" href=\"https:\/\/cyberscoop.com\/wp-json\/oembed\/1.0\/embed?url=https%3A%2F%2Fcyberscoop.com%2Fsiegedsec-hack-transition-bans-satellite-systems%2F&amp;format=xml\">\n<meta name=\"parsely-title\" content=\"Hacking crew targeting states over transition bans claims cyberattack hitting global satellite systems\"><br \/>\n<meta name=\"parsely-link\" content=\"http:\/\/cyberscoop.com\/siegedsec-hack-transition-bans-satellite-systems\/\"><br \/>\n<meta name=\"parsely-type\" content=\"post\"><br \/>\n<meta name=\"parsely-image-url\" content=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?w=150&amp;h=150&amp;crop=1\"><br \/>\n<meta name=\"parsely-pub-date\" content=\"2023-07-03T18:35:12Z\"><br \/>\n<meta name=\"parsely-section\" content=\"Cybercrime\"><br \/>\n<meta name=\"parsely-tags\" content=\"gender affirming care,hacktivism,satellite,seigedsec,siegedsec\"><br \/>\n<meta name=\"parsely-author\" content=\"AJ Vicens\"> <!-- Google Tag Manager --> <!-- End Google Tag Manager --> <link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=32\" sizes=\"32x32\">\n<link rel=\"icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=192\" sizes=\"192x192\">\n<link rel=\"apple-touch-icon\" href=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=180\">\n<meta name=\"msapplication-TileImage\" content=\"https:\/\/cyberscoop.com\/wp-content\/uploads\/sites\/3\/2023\/01\/cropped-cs_favicon-2.png?w=270\"> <\/head><body class=\"post-template-default single single-post postid-75222 single-format-standard\" id=\"readabilityBody\"> <svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-dark-grayscale\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0 0.49803921568627\" \/><feFuncG type=\"table\" tableValues=\"0 0.49803921568627\" \/><feFuncB type=\"table\" tableValues=\"0 0.49803921568627\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-grayscale\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0 1\" \/><feFuncG type=\"table\" tableValues=\"0 1\" \/><feFuncB type=\"table\" tableValues=\"0 1\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-purple-yellow\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0.54901960784314 0.98823529411765\" \/><feFuncG type=\"table\" tableValues=\"0 1\" \/><feFuncB type=\"table\" tableValues=\"0.71764705882353 0.25490196078431\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-blue-red\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0 1\" \/><feFuncG type=\"table\" tableValues=\"0 0.27843137254902\" \/><feFuncB type=\"table\" tableValues=\"0.5921568627451 0.27843137254902\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-midnight\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0 0\" \/><feFuncG type=\"table\" tableValues=\"0 0.64705882352941\" \/><feFuncB type=\"table\" tableValues=\"0 1\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-magenta-yellow\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0.78039215686275 1\" \/><feFuncG type=\"table\" tableValues=\"0 0.94901960784314\" \/><feFuncB type=\"table\" tableValues=\"0.35294117647059 0.47058823529412\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-purple-green\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0.65098039215686 0.40392156862745\" \/><feFuncG type=\"table\" tableValues=\"0 1\" \/><feFuncB type=\"table\" tableValues=\"0.44705882352941 0.4\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg><svg viewBox=\"0 0 0 0\" width=\"0\" height=\"0\" focusable=\"false\" role=\"none\"><defs><filter id=\"wp-duotone-blue-orange\"><feColorMatrix color-interpolation-filters=\"sRGB\" type=\"matrix\" values=\" .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 .299 .587 .114 0 0 \" \/><feComponentTransfer color-interpolation-filters=\"sRGB\"><feFuncR type=\"table\" tableValues=\"0.098039215686275 1\" \/><feFuncG type=\"table\" tableValues=\"0 0.66274509803922\" \/><feFuncB type=\"table\" tableValues=\"0.84705882352941 0.41960784313725\" \/><feFuncA type=\"table\" tableValues=\"1 1\" \/><\/feComponentTransfer><feComposite in2=\"SourceGraphic\" operator=\"in\" \/><\/filter><\/defs><\/svg> <a href=\"https:\/\/cyberscoop.com\/siegedsec-hack-transition-bans-satellite-systems\/#main\" class=\"skip-to-content-link visually-hidden-focusable\">Skip to main content<\/a> <\/p>\n<div class=\"ad ad--top ad--top-desktop\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p> <main id=\"main\" role=\"main\" tabindex=\"-1\"> <\/p>\n<div class=\"ad ad--top ad--top-mobile\">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<section id=\"stickybar\" class=\"stickybar stickybar--newsletter js-stickybar\" readability=\"0.82\"> <button class=\"stickybar__close js-stickybar-close\" aria-controls=\"stickybar\"> <svg class=\"icon icon--close\" width=\"21\" height=\"22\" viewBox=\"0 0 21 22\" fill=\"none\"><path d=\"m.822.518-.805.805L9.695 11 .017 20.678l.805.805 9.678-9.678 9.677 9.678.806-.805L11.305 11l9.678-9.677-.806-.805-9.677 9.677L.822.518Z\" fill=\"currentColor\" \/><\/svg> <span class=\"visually-hidden\">Close<\/span> <\/button> <\/section>\n<article class=\"single-article content\">\n<div class=\"single-article__container js-single-article-content\">\n<header class=\"single-article__header \" readability=\"26.302997858672\">\n<div class=\"single-article__header-content\" readability=\"33.393939393939\">\n<ul class=\"single-article__eyebrow\">\n<li class=\"single-article__category\"> <a class=\"single-article__category-link\" href=\"https:\/\/cyberscoop.com\/news\/threats\/cybercrime\/\"> <span>Cybercrime<\/span> <\/a> <\/li>\n<\/ul>\n<p> A group that previously hacked Fort Worth, Texas, claimed a cyberattack that affected Halliburton, Shell, Helix Energy and Oceaneering. <\/p>\n<\/p><\/div>\n<div class=\"single-article__cover-wrap\">\n<figure class=\"single-article__cover\"> <img data-recalc-dims=\"1\" fetchpriority=\"high\" width=\"640\" height=\"428\" src=\"https:\/\/i0.wp.com\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems.jpg?resize=640%2C428&#038;ssl=1\" class=\"single-article__cover-image wp-post-image\" alt decoding=\"async\" srcset=\"https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg 1920w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=300,200 300w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=768,513 768w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=1024,684 1024w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=1536,1026 1536w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=600,401 600w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=251,168 251w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=504,337 504w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=1010,675 1010w, https:\/\/ddi.mohflo.net\/wp-content\/uploads\/2023\/07\/hacking-crew-targeting-states-over-transition-bans-claims-cyberattack-hitting-global-satellite-systems-1.jpg?resize=1262,843 1262w\" sizes=\"(max-width: 1010px) 100vw, 1010px\"><figcaption> Opponents of several bills targeting transgender youth attended a rally at the Alabama State House in Montgomery on March 30, 2021. (Photo by Julie Bennett\/Getty Images) <\/figcaption><\/figure>\n<\/p><\/div>\n<\/header>\n<div class=\"single-article__content\">\n<div class=\"single-article__content-inner has-drop-cap\"> <html readability=\"63.896328485278\"><body readability=\"129.10088113649\"><\/p>\n<p>A hacking crew with a history of blending politics and criminal activities claimed on Saturday to have \u201ctargeted various satellite receivers and industrial control systems around the country, particularly in states banning gender affirming care.\u201d <\/p>\n<p>SiegedSec, a group that emerged publicly on Telegram on April 3, 2022, claimed that part of its most recent attack included \u201ca delicious supply chain attack,\u201d which allowed the group to \u201ccontrol\u201d multiple companies\u2019 \u201caccounts used for monitoring satellite receivers, VSATs, VOIP services, etc.\u201d The companies include Halliburton, Shell, Helix Energy and Oceaneering, the group claimed.<\/p>\n<p>SiegedSec has claimed multiple attacks on organizations, corporations and states. Recently, it has taken aim at states where lawmakers have sought to ban or limit gender affirming care or ban and severely limit access to abortion. Last summer, for instance, the group \u2014&nbsp;which describes its members as \u201cgay furry hackers\u201d \u2014 <a href=\"https:\/\/therecord.media\/kentucky-arkansas-say-abortion-ban-leaks-used-publicly-available-data\" target=\"_blank\" rel=\"noreferrer noopener\">targeted state government agencies in Kentucky and Arkansas<\/a> over those states\u2019 changes to abortion access. The group has also targeted dozens of other companies around the world with more traditional hack and data theft operations.<\/p>\n<p>The July 1 message also included links to download roughly 40 gigabytes of data stolen from the city of Fort Worth Transportation &amp; Public Works. On June 28, SiegedSec posted what it said were roughly 500,000 files \u2014&nbsp;roughly 180 gigabytes \u2014 that purportedly included work orders, employee lists, invoices, police reports, emails between City of Fort Worth employees, camera footage \u201cand lots, lots, lots more~!\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>SiegedSec seemingly hit multiple satellite receivers: the Trimble netR9 that often comes with security disabled by default or default credentials. An <a href=\"https:\/\/navgeotech.com\/ftp\/user_guide\/um_NetR9_en.pdf\" target=\"_blank\" rel=\"noreferrer noopener\">online manual<\/a> says that the default user and password are \u201cadmin\u201d and \u201cpassword,\u201d respectively. A cursory glance through <a href=\"https:\/\/www.shodan.io\/search?query=TRMB%2F4.0+country%3A%22US%22\" target=\"_blank\" rel=\"noreferrer noopener\">Shodan.io, a database of publicly accessible IP addresses, shows<\/a> around 1,374 that are online in the U.S. \u2014 although some are honeypots. Those receivers are often used for accurate positioning and not communications, says Ron Fabela, chief technology officer at cybersecurity firm Xona.<\/p>\n<p>Some of those receivers could be used in offshore oil rigs.&nbsp;A screenshot that was among the documents SiegedSec posted to Telegram over the weekend&nbsp;showed a map with points&nbsp;located&nbsp;just off&nbsp;Texas\u2019 Gulf Coast, which has a major&nbsp;concentration offshore oil and gas facilities.&nbsp;Additionally, Helix Energy provides services for the offshore energy industry.<\/p>\n<p>Fabela said that so far any impact from possible SeigedSec activity appears to be limited to monitoring services, but he noted that offshore rigs have multiple positioning and telemetry methods. He noted that as SiegedSec appears only to have deleted the ITC Global portal accounts that might be the limit of their access with those networks.<\/p>\n<p>Marlink Group, which owns ITC Global, could not be reached for comment. A spokesperson for Shell said the company is looking into the claims. Halliburton, Helix Energy and Oceaneering did not respond to a request for comment.<\/p>\n<p>\u201cWe targeted a company that supplies satellite-related and other devices called ITC Global,\u201d the group said in response to questions sent by CyberScoop on Monday to an email address announcing the hack. \u201cWe have more going on with ITC Global aside from just deleting accounts, however I can\u2019t go into specifics.\u201d<\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>Last week, the group announced a pair of attacks, one on June 23 and one on June 28. <\/p>\n<p>\u201cWe have decided to make a message towards the U.S government,\u201d the June 23 message read. \u201cTexas happens to be one of the largest states banning gender affirming care, and for that, we have made Texas our target. [F***] the government.\u201d<\/p>\n<p>The City of Fort Worth <a href=\"https:\/\/www.fortworthtexas.gov\/news\/2023\/6\/data-breach?utm_source=newsletter&amp;utm_medium=email&amp;utm_campaign=newsletter_axioscodebook&amp;stream=top\" target=\"_blank\" rel=\"noreferrer noopener\">said in a June 24 statement<\/a> that the data involved came from \u201can internal information system\u201d known as Vueworks that facilitates work orders for the Transportation and Public Works and Property Management departments. There was no indication that any other systems were accessed, the city said. <\/p>\n<p>A message posted to the group\u2019s Telegram channel June 28 announced attacks on the Nebraska Supreme Court, the South Dakota Boards and Commissions website, the Texas State Behavioral Health Executive Council, the South Carolina Criminal Justice Information Services portal and the Pennsylvania Provider Self-Service website. <\/p>\n<p>Agencies in each of the states were investigating the alleged hacks, the <a href=\"https:\/\/therecord.media\/states-investigate-siegedsec-hacking-campaign\" target=\"_blank\" rel=\"noreferrer noopener\">Record\u2019s Jonathan Greig reported June 30<\/a>. Texas, Nebraska and South Dakota have laws or policies banning gender affirming care, while South Carolina is considering a transition ban, <a href=\"https:\/\/www.hrc.org\/resources\/attacks-on-gender-affirming-care-by-state-map\" target=\"_blank\" rel=\"noreferrer noopener\">according to the Human Rights Campaign<\/a>. <\/p>\n<div class=\"ad ad--inline_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<p>The Pennsylvania attack gave the group access to more than 15,000 \u201cchild care records,\u201d SiegedSec said, \u201chowever we will not be leaking any data due to\u2026 well its child care.\u201d <\/p>\n<p>\u201cWe did not intend to also target states that aren\u2019t part of the push to ban gender affirming care, however one opportunity appeared with the Pennsylvania PSS hack, but that\u2019s the only exclusion,\u201d the email to CyberScoop read. \u201cThe targeted states were not opportunistic, we targeted them specifically for the gender affirming care issues.\u201d<\/p>\n<p>SiegedSec members \u201cfocus more on the message than the money,\u201d the email read. \u201cAlthough we mostly consider ourselves more blackhat than hacktivists. Money is not our main goal, most of the time we just want to have fun and destroy stuff.\u201d<\/p>\n<p><\/body> <\/p>\n<footer class=\"single-article__footer\">\n<div class=\"single-article__tags-container\">\n<h4 class=\"single-article__tags-title\">In This Story<\/h4>\n<\/p><\/div>\n<\/footer>\n<p> <\/html><\/div>\n<\/p><\/div>\n<\/p><\/div>\n<div class=\"single-article__ads js-single-article-sidebar\">\n<div class=\"ad ad--sidebar js-single-article-sidebar-5 ad--rightrail_1 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-4 ad--rightrail_2 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div class=\"ad ad--sidebar js-single-article-sidebar-3 ad--rightrail_3 \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div><\/div>\n<\/article>\n<section class=\"latest-podcasts\">\n<h2 class=\"latest-podcasts__title\"> Latest Podcasts\t<\/h2>\n<\/section>\n<div class=\"top-categories\">\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Technology<\/h3>\n<\/p><\/div>\n<div class=\"top-categories__container\">\n<h3 class=\"top-categories__category-title\">Government<\/h3>\n<\/p><\/div>\n<\/p><\/div>\n<p> <\/main> <\/p>\n<div class=\"ad ad--bottom \">\n<div class=\"ad__inner\"> <span class=\"screen-reader-text\">Advertisement<\/span> <\/div>\n<\/div>\n<div id=\"interstitial\" class=\"welcome__container\"> <button id=\"close-modal-1\" class=\"welcome__clickable_area\"><\/button> <\/p>\n<div class=\"welcome__ad_wrapper\">\n<p> <button id=\"close-modal-3\" class=\"welcome__continue-button\">Continue to CyberScoop<\/button> <\/p>\n<\/p><\/div>\n<\/p><\/div>\n<p> <!-- Start of HubSpot Embed Code --> <!-- End of HubSpot Embed Code --> <\/body> <a href=\"https:\/\/cyberscoop.com\/siegedsec-hack-transition-bans-satellite-systems\/\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hacking crew targeting states over transition bans claims cyberattack hitting<\/p>\n","protected":false},"author":11,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[282,566,353,539,567,568],"tags":[286,569,357,542,570,571],"class_list":["post-1463","post","type-post","status-publish","format-standard","hentry","category-cybercrime","category-gender-affirming-care","category-hacktivism","category-satellite","category-seigedsec","category-siegedsec","tag-cybercrime","tag-gender-affirming-care","tag-hacktivism","tag-satellite","tag-seigedsec","tag-siegedsec"],"featured_image_urls":{"full":"","thumbnail":"","medium":"","medium_large":"","large":"","1536x1536":"","2048x2048":"","chromenews-featured":"","chromenews-large":"","chromenews-medium":""},"author_info":{"display_name":"Cyber Scoop","author_link":"https:\/\/ddi.mohflo.net\/index.php\/author\/cyberscoop\/"},"category_info":"<a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/cybercrime\/\" rel=\"category tag\">cybercrime<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/gender-affirming-care\/\" rel=\"category tag\">gender affirming care<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/hacktivism\/\" rel=\"category tag\">hacktivism<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/satellite\/\" rel=\"category tag\">satellite<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/seigedsec\/\" rel=\"category tag\">SeigedSec<\/a> <a href=\"https:\/\/ddi.mohflo.net\/index.php\/category\/siegedsec\/\" rel=\"category tag\">SiegedSec<\/a>","tag_info":"SiegedSec","comment_count":"0","jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1463","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/users\/11"}],"replies":[{"embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/comments?post=1463"}],"version-history":[{"count":0,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/posts\/1463\/revisions"}],"wp:attachment":[{"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/media?parent=1463"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/categories?post=1463"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ddi.mohflo.net\/index.php\/wp-json\/wp\/v2\/tags?post=1463"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}