Key takeaway: Killnet briefly disrupted several US airport websites in DDoS attacks that could well be a precursor of more to come in the next few days. Airport websites in two-dozen states, marine terminals and logistics facilities, weather monitoring centers, healthcare systems and more are potential next targets [222 words]
What: Pro-Russian cyber threat actor Killnet on October 10 launched DDoS attacks on websites belonging to several airports including major ones such as LAX, Chicago’s O’Hare and Atlanta’s Hartsfield-Jackson. The attacks briefly knocked some of the targeted websites offline.
Killnet has called on its supporters to launch similar attacks against airports in 24 states. It also wants attacks on websites belonging to marine terminals and logistics facilities, weather monitoring centers, healthcare systems, city metros), exchanges and online trading systems.
Why it matters: Killnet is among several groups that are using cyber-attacks to protest US and NATO support for Ukraine in its war against Russia. So far, it’s attacks have been more of a nuisance than a real threat. But there’s no telling how long it will remain that way.
More reading
Cyberattacks force over a dozen US airport websites offline
Flashpoint’s take: Making Sense of the Killnet, Russia’s Favorite Hacktivists
US Coast Guard Cyber Command’s Killnet alert (with TTPs and recommended mitigations)
