Cyber Threat Actor: XPY Supporters
| Actor Type | Location | Known Incidents |
Activist
|
United States of America
|
1 incident |
|---|
Profile
The threatactor is known by the alias XPY Supporters, according to the cited source, and this designation appears in the publicly available documentation referenced for this profile.
The actor’s location has been identified as the United States of America, according to the cited source, and this information is consistent with the geographic details provided in the reporting.
The incident attributed to this actor occurred on January 24, 2015, as stated in the cited source, and this date marks the specific timing of the described compromise.
The target of the attack was a Bitcoin news platform, according to the cited source, and this detail is derived from the incident description provided.
The attackers gained unauthorized access to the platform’s domain registrar and its Twitter account, according to the cited source, and this action enabled subsequent manipulation of the domain and social media content.
This breach resulted in the theft of the domain and the defacement of the platform’ssocial media presence, according to the cited source, and these outcomes disrupted the normal operation of the online services.
Messages posted by the attackers included derogatory content and false claims that the organization had fabricated investigative reports concerning SEC actions against a mining company and its CEO, according to the cited source, and these statements were intended to damage the platform’s reputation.
Following the compromise, the Twitter account was restored with the assistance of trusted contacts, according to the cited source, and this recovery effort did not affect the status of the website.
The website, however, remained inaccessible and appeared as a parked domain after the attack, according to the cited source, and this condition persisted despite the restoration of the social media account.
Prior to this event, a separate disruptive intrusion had compromised the site’s content management system, causing operational disruptions, according to the cited source, and this earlier incident contributed to the overall instability of the platform.
