"Black Shadow": $ 1 million within 48 hours for not revealing data from a gay dating site

The sites that were attacked on Tuesday by the group of hackers affiliated with Iran have not yet returned to work. New and worrying details about the hacking of the dating site for the gay homosexual community "Atraf" have been revealed. The hackers themselves are launching another $ 1 million payment demand.
On Sunday afternoon, the telegram group of the hacker group Black Shadow wrote that "so far no one from the Israeli government or Cyberserve has contacted us. Obviously this is not an important issue for them. We know about the concern regarding Atraf's database, and as you know we are interested in money."  They noted that "Atraf's database numbers of a million people, their chat data, everything that was on the site will be published. If we get a million dollars in 48 hours, we will not leak the information or sell it to anyone."
A surfer on the site who lives with HIV and whose details were revealed in an Atref file said: "I have not used Atref for several years and I assume that anyone who has registered as a carrier in this app knows that it can reach the whole world. It is a serious matter to write such a thing in the app. "And he has confidential pictures - that's a problem. It's a big deal to put it, but that's my opinion. I'm out of the closet anyway and it doesn't really matter to me."
Patrick Levy, one of the first in Israel to be exposed to HIV-positive people, offered assistance in the gay community's internal WhatsApp groups to people living with the virus and their details may be revealed or have already been revealed. In a conversation with Ynet, Levy said: "Even if in 2021 there is nothing to be ashamed of and we are light years from 30 or 40 years ago, privacy is still important and everyone can decide when and what to reveal and in front of whom. "It can certainly do damage including very severe hardships for people. Therefore, in the coming days, we need to strengthen those who need it and respond as a proud community in general and of people living with HIV in particular."
"Atraf" has been inactive since Friday night, following the hacking of the Cyberserve server company by the Iranian-affiliated group Black Shadow. "If something is leaked from an Atraf site, it will be a very serious privacy attack," Sahar Cohen, a gay man outside the closet who has been using dating sites for years, told Ynet. "Atraf is used, among other things, for flirting, realizing sexual fantasies, and people uploading pictures of genitals there. Someone needs to stop it as soon as possible - taking a person out of the closet is not an insurance policy, it's the most private thing that can be." Following the leak of the details from the Atref website, the Association for the LGBT Party will open the "There is someone to talk to" attention line in the evening in an emergency format. The line will operate during the week on Sundays-Thursdays between 17: 00-19: 00 and 19:30 22:30 by phone: 2982 * and in the WhatsApp app at: 058-6205591.
Last night, the number of referrals to the LGBT organization's attention line doubled, with the vast majority of referrals dealing with information leaks.
The AIDS Committee said: "The thought that a person's HIV-positive status will be revealed unwillingly worries us very much. We urge the community and the public not to take part in the act of terrorism or to disseminate any information that infringes on a person's privacy, especially when it comes to such sensitive information. Psychosocial: 054-3200016, Moore Aram, Social worker.
The Black Shadow group announced the break-in yesterday. The same group is also responsible for attacks on the insurance company Shirbit and the financing company KLS. in the last year. Tonight the hackers demanded that the companies contact them, possibly as part of a ransom demand for the release of the information they took over.
Yesterday afternoon, they began publishing details of thousands of customers of the public transportation company "Kavim" - whose site was also hacked and shut down. Last night, details of thousands of customers of Dan and Pegasus were also published.
Dan wrote that the company's website is temporarily inactive due to an information security incident on the servers of an external provider that provides storage services to Dan's website. The information security incident did not affect the company's operating systems and therefore the company's public transportation activity continues ".
The Israeli Internet Association and the LGBT Association have jointly issued guidelines to surfers whose details have been leaked, in order to significantly reduce the potential for harm. Among other things, they recommend that surfers change their password in the other services in which they use their identification information.
"In any case, to attempt extortion or demand ransom - contact the Israel Police immediately," it said. "Also inform your friends who surf the 'Atref' website about the hack. If your details were posted on social media - report it to them. On most popular platforms, there is a report button that leads to a menu of various vulnerabilities - including revealing personal information."

Israel and Iran have been waging a cyberwar for a long time, but lately, it has become clear that the Iranians are achieving success in painful responses to Israeli attacks. The head of Iran's civil defense, Golmarza Jalai, estimated that Israel and the United States were behind the cyber attack that disrupted operations at all gas stations in the country last week. "We still can't say it legally," Jalai said in an interview with Iranian state television, "but I believe the attack was carried out by the Zionist regime, the Americans, and their agents."
He said Tehran was "safe" - based on completed investigations - that Israel and the United States were also responsible for the cyberattack that led to disruptions in train traffic across the country in July, as well as the one that damaged operations at the southern Shahid Rajai port last year.