Menu
Browse

Cyber Threat Actor: Selah

Actor Type Location Known Incidents
 Icon
Activist
1 incident
Profile

Selah is a threat actor publicly linked to a 2017 intrusion against the New York Post's mobile application infrastructure. The entity claimed responsibility through a signature embedded in unauthorized push notifications disseminated during the incident. No additional aliases or operational history have been publicly documented beyond this event.

The actor demonstrated a focus on disruption through compromised communication channels. Selah manipulated the news organization's notification system to broadcast inflammatory political statements, religious references, and song lyrics to mobile app users. Messages included provocative phrases like "Heil President Donald Trump" and excerpts from Nirvana's "Come As You Are," followed by the attribution "Selah." The campaign did not exhibit overt financial objectives or data exfiltration claims. Technical specifics regarding initial access vectors, malware usage, or infrastructure remain undocumented in available sources. The New York Post acknowledged the breach publicly but did not attribute it to any specific group or nation-state. No subsequent operations tied to Selah have been widely reported since 2017, and affiliations with criminal or state-sponsored entities remain unverified. The incident highlights the actor's opportunistic targeting of media platforms to amplify disruptive messaging rather than pursue traditional cybercrime motives.

Incidents
Attributed incidents available to members
1 incident
Sources
Sources available to members
0 sources