Feeds.Feedburner
U.S. Army Websites Defaced in Pro-Kurdish Hacktivist Attack
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
On July 6, 2026, multiple U.S. Army subdomains, including oil.army.mil and ai2c.army.mil, were defaced in a 404 hijacking campaign. The attack displayed messages denouncing President Donald Trump and supporting Kurdish independence. Cybersecurity researcher Ronald Lovelace discovered the defacement, which exploited vulnerabilities in the websites' error-handling systems, likely due to compromised WordPress plugins. The Army's affected sites belong to the Open Innovation Lab and the AI Integration Center. Following the incident, the Army took the pages offline and initiated an investigation. The attack raises concerns about the security of government websites and the potential for broader vulnerabilities. As of now, it remains unclear how the hackers gained access to modify the error pages. No data breach has been confirmed, and the investigation is ongoing.
Key Points: • Two U.S. Army websites were defaced with pro-Kurdish messages and insults to Trump. • The attack utilized a 404 hijacking method, exploiting vulnerabilities in WordPress plugins. • The Army has removed the affected pages and is currently investigating the incident.