Syrian Electronic Army claims hack of news sites, including CBC

CBC
Updated

The Syrian Electronic Army is claiming responsibility for the hacking of multiple news websites, including CBC News.

CBCNews.ca was affected Thursday by the hacking. The site returned to normal later Thursday morning.

Earlier, some users trying to access the CBC website reported seeing a pop-up message reading: "You've been hacked by the Syrian Electronic Army (SEA)."

According to technicians who worked on the fix, it may take several hours for systems to restore to normal. However, CBC News has been told that no personal data was accessed in the hack that affected CBC sites, and nothing foreign was installed on computers or devices while readers accessed the CBC during the incident.

Users are advised to clear their browser cache, although a complete fix may require internet service providers to also do some work on their end.

Gigya platform used to hack other sites

The hack targeted a network used by many news organizations and businesses.

A tweet from an account appearing to belong to the Syrian Electronic Army suggested the attacks were meant to coincide with the U.S. Thanksgiving on Thursday.

The group claimed to have used the domain Gigya.com, a company that offers businesses a customer identity management platform, to hack into other sites via GoDaddy, its domain registrar. Gigya is "trusted by more than 700 leading brands," according to its website.

The hacker or hackers redirected sites to the Syrian Electronic Army image that users saw.

Gigya'soperations team released a statement Thursday morning saying that it identified an issue with its domain registrar at 6:45 a.m. ET. The breach "resulted in the redirect of the Gigya.com domain for a subset of users," the company said.

The company corrected the issue at 7:40 a.m. ET and says the solution typically takes minutes to take effect, but can take longer in some cases.

"To be absolutely clear: neither Gigya's platform itself nor any user, administrator or operational data has been compromised and was never at risk of being compromised," CEO Patrick Salyer said in a company blog post about the service attack.

Salyer said the company has taken additional measures to protect itself from future attacks.

CBC uses Gigya for social share tools only, and doesn't collect any user data through this feature.

CBC readers seeing the pop-up message should not be concerned about the security of their personal computers or devices. Their electronics have not been hacked.

News sites, businesses impacted

The Telegraph reported that part of its website run by a third party was compromised earlier Thursday.

"We've removed the component," the Telegraph tweeted. "No Telegraph user data was affected."

The Independent reported that it was also affected by the apparent hacking, as well as the Chicago Tribune, CNBC, PC World and Forbes — citing social media.

Others reported that some business sites were also hacked.

Twitter user Benjamin Spears said the Walmart Canada site was displaying the same message.

Previous hacks against media

This is not the first time the group has claimed responsibility for hacking major websites.

In August 2013, the Syrian Electronic Army said it shut down the New York Times website for several hours.

It also attempted to hack into Twitter, but only managed to sporadically cause some trouble for users trying to view images and photos.

In the months prior to that attack, the Syrian Electronic Army had taken credit for a number of web attacks on media it considers sympathetic to Syria's rebels, including previous attacks on the New York Times, as well as the Washington Post, Agence France-Press, 60 Minutes, CBS News, National Public Radio, The Associated Press, Al-Jazeera English and the BBC.

  • Up next
  • Up next
  • Up next
  • Up next

Latest Stories