Menu
Browse

Cyber Threat Actor: Fallaga Team

Actor Type Location Known Incidents
 Icon
Activist
Tunisia
4 incidents
Profile

The Tunisian Fallaga Team, also known simply as Fallaga Team, is an Islamist hacktivist group based in Tunisia that has been linked to ISIS‑inspired activity. The group operates under the aliases Fallaga Team and Tunisian Fallaga Team and has been described in open sources as a Tunisian Islamist hacktivist collective. Public reporting associates the Fallaga Team with other ISIS‑connected entities such as the Global Islamic Caliphate and Team System DZ, indicating a loose affiliation with the broader ISIS‑inspired milieu rather than a formal state sponsor. The actors have claimed responsibility for a series of website defacements that are framed as retaliation against perceived Western aggression and as part of electronic jihad campaigns.

Their targeting has spanned multiple sectors and regions, including healthcare institutions such as NHS websites in south‑west England, educational platforms like Jewish schools in North London and Baltimore, and a broad range of French‑hosted sites regardless of industry. The group has also claimed intrusion into the Twitter and YouTube accounts of the United States Central Command and has been noted for attacking airlines and media companies. Strategic objectives expressed in their messages include condemning Islamophobia, opposing Western policies in the Middle East, and promoting anti‑Western propaganda, indicating an ideological rather than financial or espionage‑driven motive. Notably, the Fallaga Team has claimed to have defaced at least three hundred websites in 2015 alone, demonstrating a capacity for mass‑scale website compromises.

Observed tactics, techniques, and procedures consist primarily of website defacement, the posting of graphic imagery or political statements, and the exploitation of web‑application vulnerabilities to gain unauthorized access. The reporting does not reference specific malware families, custom tooling, or detailed initial‑access vectors beyond the act of compromising web servers. The group’s activity is characterized by repetitive defacement campaigns that serve to disseminate their ideological messages, and they have coordinated timing with other ISIS‑linked hacker collectives to amplify impact. No publicly available sources attribute financial gain, espionage objectives, or sophisticated malware development to the Fallaga Team, and any assertions about their size, revenue, or technical sophistication would exceed the information provided.

Incidents
Attributed incidents available to members
4 incidents
Sources
Sources available to members
4 sources