Cyber Threat Actor: Vigilance
| Actor Type | Location | Known Incidents |
Activist
|
United States of America
|
1 incident |
|---|
Profile
Vigilance is the alias used by a hacktivist who carried out a breach of Minnesota government systems in June 2017. The actor is known to operate from the United States of America, as indicated by the location information associated with the incident. The breach occurred on 2017‑06‑18, when the individual accessed the admin.state.mn.us server and exfiltrated approximately 1,400 email addresses paired with hashed passwords. The hacker described the action as a form of protest against a controversial police shooting verdict involving Philando Castile, framing the intrusion as retaliation for perceived systemic injustice. The target of the operation was a state‑level government entity, specifically Minnesota’s IT infrastructure, which suggests a focus on the public sector within the United States. The stated objective was not financial gain or espionage but rather to draw attention to a social justice issue and to leak data as a form of activism. The actor’s tactics, as reported, involved compromising a government database to obtain email addresses and password hashes, noting that the hashes were produced with the descrypt algorithm and that the attacker was unable to crack them. The stolen data included contact information for external contractors, users of a Minnesota‑maintained scientific forum, and a small set of IT administrator accounts, which were subsequently posted online. No specific malware families, initial‑access vectors, or custom tooling were detailed in the source material.
Public attribution does not link Vigilance to any state sponsor, criminal consortium, or larger hacking group; the actor appears to have acted independently. The Minnesota government breach remains the only publicly reported operation associated with this alias, and it is cited as a representative example of the hacktivist’s activity. No further campaigns or additional incidents involving Vigilance are documented in the provided context.
