NANS

The Nation Agency for Network Services (NANS), also referenced by its domain nans.gov.sy, is a Syrian government organization headquartered in Syria. Its name indicates a focus on providing network-related services to support national governmental operations. As a state entity, NANS maintains an online presence through its official website, which serves as a portal for its administrative functions and public communications. The agency operates within the Syrian government's framework, though specific details about its internal structure or parent organizations are not publicly available. Its primary documented interface with the public is through its web domain, which was active prior to a significant security incident in 2016.

On April 6, 2016, NANS became a victim of a large-scale cyberattack orchestrated by the hacktivist collective Cyber Justice Team. This group exploited known vulnerabilities in outdated Joomla content management systems to compromise multiple Syrian government and private websites, including NANS's online portal. The attackers successfully exfiltrated 43 gigabytes of sensitive data, which encompassed server credentials, administrative passwords, and MySQL database permissions. The leaked data also contained remnants from previous intrusions, such as older shell files and database entries, indicating prior security breaches. While the hacktivists claimed political motives against the Syrian government and ISIS, they deliberately withheld files related to civilian education and healthcare systems from public release. Security analysts who reviewed the incident emphasized that the compromise was facilitated by systemic negligence in maintaining secure web portals, highlighting how the use of obsolete software platforms enables relatively simple attacks on government assets. This event underscored the vulnerabilities within Syria's governmental IT infrastructure and served as a public example of the risks associated with unpatched systems.