Cyber Incident Victim: Isle of Wight County, Virginia
Date:
Jan 2015
Location:
United States of America
Summary
A pro-ISIS Algerian hacking group known as Team System DZ compromised a Virginia county's website, replacing its content with messages supporting ISIS, anti-Israel and anti-France statements in Arabic, and a video. The county's information manager confirmed the defacement, noting the third-party-operated site had previously been targeted by hackers; services were restored shortly after the incident. This attack followed similar cyber intrusions attributed to ISIS sympathizers, including a breach of U.S. Central Command's social media accounts, which defense officials characterized as disruptive but not critically damaging.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On January 16, 2015, before 9 p.m. Eastern Time, the website of Isle of Wight County, Virginia (http://www.co.isle-of-wight.va.us), was compromised by the pro-ISIS hacking group Team System DZ. The Algerian-based group replaced the site’s content with a defacement page displaying the message “I love ISIS” at the top, accompanied by Arabic text and a video. The defacement included the explicit phrase “Fuck israel & France je suis mohamed je suis ISIS,” asserting affiliation with ISIS. The attackers publicly documented their compromise by mirroring the defaced site on Zone-H (mirror ID 23551861), a platform commonly used to archive website breaches. County officials, including Information Resource Manager Don Robertson, confirmed the incident and expressed disappointment, noting the website—operated by a third-party vendor—had previously been targeted by hackers. The county immediately initiated remediation efforts, though specific technical containment measures were not disclosed in public statements.
The attack occurred within days of a high-profile breach of U.S. Central Command (CENTCOM)’s social media accounts, which ISIS-aligned hackers also claimed. While less sophisticated than the CENTCOM incident, the Isle of Wight defacement underscored recurring vulnerabilities in third-party-managed government systems. Robertson emphasized the county’s commitment to restoring services and protecting public access, though prior breaches suggested persistent security challenges. By January 18, 2015, the county’s website was fully restored. The incident drew parallels to broader geopolitical cyber activity, as federal agencies like CENTCOM implemented aggressive countermeasures—including 50 password rotations for social media accounts—following their breach. Defense Secretary Chuck Hagel characterized the CENTCOM intrusion as a “violation” but downplayed its operational significance, reflecting the mixed perceptions of such attacks’ strategic impact. No data theft or secondary disruptions were reported in the Isle of Wight incident, limiting its immediate consequences to reputational damage and temporary service unavailability.