Cyber Incident Victim: Richland County Emergency Management
Date:
Mar 2015
Location:
United States of America
Summary
Pro-ISIS hackers operating under the name Team System DZ compromised multiple Richland County government websites, including the Sheriff's Department, municipal services, and public facilities. The attackers defaced the sites with messages expressing support for ISIS and containing anti-US and anti-Israel rhetoric. Services such as the Parks Commission, Ambulance Service, Fair & Recycling, Land Conservation, and Fitness Center were impacted. The hackers left a declaration of their actions and ideological motives on each targeted site. All affected websites were subsequently restored to normal operation.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On March 21, 2015, pro-ISIS hackers operating under the name Team System DZ, identified as Moroccan, breached multiple websites belonging to Richland County, Wisconsin. The attackers compromised the Richland County Sheriff’s Department website along with six additional county-affiliated sites: the City of Richland Center Municipality, Parks Commission, Ambulance Service, Richland County Fair & Recycling, Land Conservation Department, and Richland County Fitness Center. Hackers replaced legitimate content with a defacement page displaying the message: “Hacked by Team System Dz! I am a Muslim & I love jihad, I love ISIS | Fuck Israel & USA.” This action demonstrated explicit support for ISIS and hostility toward the United States and Israel. The defacement affected all seven websites simultaneously, disrupting public access to municipal services and information portals. Zone-h, a platform tracking website compromises, archived mirrors of the defaced pages as evidence. The incident occurred amid a series of cyberattacks by pro-ISIS groups against U.S. entities, including prior breaches of military personnel data and government websites earlier in 2015.
The attack rendered critical county services temporarily inaccessible, including emergency management resources such as the Sheriff’s Department and Ambulance Service sites. While no data theft or additional system manipulation was reported, the defacement’s political messaging introduced reputational risks and potential public alarm. County authorities restored all affected websites to operational status by the time the incident was publicly reported, though the article did not specify remediation timelines or technical recovery steps. No claims of physical damage, financial losses, or secondary disruptions were documented. The incident highlighted vulnerabilities in local government digital infrastructure, mirroring broader patterns of ideological cyberattacks targeting U.S. public sector entities during this period. Restoration efforts focused on removing hostile content and reinstating standard functionality without disclosed changes to security protocols or follow-up investigations.