Search This Blog

Showing posts with label Al-Qaeda Electronic Army. Show all posts

#opBlackSummer: Two US Petroleum companies websites breached by AQEA & TCA


Al-Qaeda Electronic Army and Tunisian Army recently attacked several U.S. Government websites as part of their operation called "#opBlackSummer" - an operation against America.

Now the hackers took their operation to next level by launching cyber attack against Petroleum and Gas companies.  Yesterday, EHN got notification that the Team breached the two U.S. Petroleum websites.

They identified the SQL Injection vulnerability in the websites belong to "Chevron Corporation(chevron.com) -an American multinational energy corporation  " and "Oceaneering International, Inc(oceaneering.com)- a subsea engineering and applied technology company based in Houston, Texas, U.S.A.".  We have verified the existence of the vulnerability.


The team managed to exploit this vulnerability and extracted sensitive data from the target databases. The hacker said to have compromised important data including email addresses, passwords, and 270 IP address belong to Companies' computers. 

The hackers claim they will send these IP address details to their Chinese hackers team to do some malicious work.


TCA said this operation will continue till September.  The hackers said they are planning to "give a great surprise for the USA" on 11th Septemebr (9/11), the date on which al-Qaeda hijacked four airliners and carried out suicide attacks against targets in the United States.

CBP.gov and OPM.gov hacked by Tunisian Cyber Army & Al-Qaeda Electronic Army

Following the Pentagon and State.gov security breach, the Tunisian Cyber Army and Al-Qaeda Electronic Army has attacked two more United States Government websites.

Today, they have targeted the U.S. customs and Border Protection (cbp.gov) and Office of Personnel Management (OPM.gov). 

The team managed to extract the information from the target database by exploiting the critical SQL Injection vulnerability in those websites.



TCA team told EHN that they have compromised information such as username, encrypted passwords(they managed to crack), private emails.

In an email sent to E Hacking News, the hacker provided the vulnerable link of both websites.  For a security reasons, we are not disclosing the links here.

The hack is part of the their ongoing operation called as "#OpBlackSummer", an operation against U.S.  So far, they have hacked large number of websites and compromised data. The hacker said their next target is Gas and Petroleum companies.