Cyber Incident Victim: KKK Ally Group
Date:
Feb 2021
Location:
United States of America
Summary
A collective of Israeli anti-fascist hackers operating under the name Hayalim Almonim breached a KKK-affiliated website belonging to the Patriotic Brigade Knights, extracting and publicly releasing members' personal information including names, photos, and contact details. The hackers defaced the site with anti-racist messages such as "Shabbat Shalom! Goodnight white pride" and exposed a senior member's listing on a public sex offender registry for child sexual assault. Claiming affiliation with the Antifa movement, the group stated their intent to dismantle white supremacist networks and deter fascist activities through such operations, referencing prior attacks against another Ku Klux Klan-linked organization. They vowed continued actions to instill fear among extremist groups while encouraging broader anti-fascist efforts.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 2 motives | 3 techniques |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
On February 4, 2021, a collective of Israeli hackers operating under the name Hayalim Almonim (Hebrew for "Anonymous Soldiers") breached the website of the Patriotic Brigade Knights, a group allied with the Ku Klux Klan. The anti-fascist hackers, who identified themselves as part of the broader Antifa movement, scraped and subsequently published members' personal information—including names, photographs, phone numbers, and addresses—on social media platforms. Among the exposed data were specific details about the group's alleged leader. The attackers defaced the website by replacing original content with a banner reading "Shabbat Shalom! Goodnight white pride" and linked to the Texas Public Sex Offender Registry, highlighting a senior member's prior conviction for sexual assault of a 14-year-old girl. In statements to the Jerusalem Post and BBC News, the hackers declared their intent to "strike terror into the hearts of the enemies of humanity" and dismantle fascist networks through sustained cyber operations. They framed the attack as retaliation against "facilitation of fascistic terrorist activity," vowing to continue targeting white supremacist organizations until delivering a "death blow to fascism in the United States."
The breach resulted in operational disruption and reputational damage to the Patriotic Brigade Knights through public exposure of internal records and criminal histories of members. Hayalim Almonim leveraged the incident to amplify their ideological message, urging other anti-fascist groups to replicate their tactics by asserting that coordinated actions would make "enemies of mankind tremble with fear." The hackers disclosed prior success with a similar attack against the Church of the Ku Klux Klan, which they claimed maintained active chapters across 25 U.S. states. No containment measures or responses from the victimized group were documented in available reporting. The attackers maintained persistent operational threats by warning "there is a lot more coming" and emphasizing their unwillingness to tolerate extremist activities. Public dissemination of compromised data extended the incident's impact beyond immediate website disruption to potential real-world consequences for exposed individuals.