{"id":2271,"date":"2025-03-11T10:57:09","date_gmt":"2025-03-11T10:57:09","guid":{"rendered":"https:\/\/cybersecurityinfocus.com\/?p=2271"},"modified":"2025-03-11T10:57:09","modified_gmt":"2025-03-11T10:57:09","slug":"musk-links-cyberattack-on-x-to-ukraine-without-evidence","status":"publish","type":"post","link":"https:\/\/cybersecurityinfocus.com\/?p=2271","title":{"rendered":"Musk links cyberattack on X to Ukraine without evidence"},"content":{"rendered":"
\n
\n
\n
\n
<\/div>\n

Elon Musk owned X experienced a flurry of outages on Monday, even as the Dark Storm hacking group claimed DDoS attacks<\/a> on the text-heavy social media giant.<\/p>\n

The pro-palestinian hacktivist group reportedly claimed the attacks on a Telegram channel, posting \u201cTwitter has been taken offline by Dark Storm Team.\u201d<\/p>\n

Also added in the post were links to CheckHost.net reports<\/a> from Monday that showed X website and application being down for several IPs across the globe.<\/p>\n

Political activist and social media influencer Ed Krassenstein claimed<\/a> on X that he has been in contact with the leader of DarkStorm who said the attack was \u201cjust a demonstration of our strength\u201d and they next plan to attack a large bank in Africa.<\/p>\n

<\/a>Elon links attack to Ukraine<\/h2>\n

On Monday, Musk <\/a>confirmed<\/a> the cyberattack on X. \u201cThere was (still is) a massive cyberattack against X.\u201d he said in an X post. \u201cWe get attacked every day, but this was done with a lot of resources. Either a large, coordinated group and\/or a country is involved.\u201d<\/p>\n

A few hours later, Musk claimed on national television that a preliminary investigation revealed a connection to Ukraine.<\/p>\n

\u201cThere was a massive cyberattack, trying to bring down the X systems, with IP addresses originating in the Ukraine area,\u201d he said.<\/p>\n

Krassenstein, however, debunked Musk\u2019s claims as propaganda as he said<\/a> he\u2019s in touch with Dark Storm and they aren\u2019t in Ukraine.<\/p>\n

In one of the followup comments on his X post, Krassenstein claimed he spoke to Musk and told him about his conversation with Dark Storm\u2019s leader. \u201cThis seems like an attempt to attack Ukraine to me,\u201d he added<\/a> as Musk made allegations about Ukraine anyway.<\/p>\n

<\/a>Nation-state involvement is possible<\/h2>\n

While very less is known about the attack, despite a bunch of revelations, experts think a nation-state involvement is indeed possible.<\/p>\n

\u201cX is under relentless cyberattacks: 24\/7\/365 and this is far beyond simple DoS attempts,\u201d said Chad Cragle, CISO at DeepWatch. \u201cWhile technical issues can occur, X\u2019s engineers understand scalability and redundancy. This isn\u2019t incompetence; it\u2019s cyberwar hitting at full force. With Musk in the spotlight and political tensions at a peak, these attacks bear all the indicators of nation-state aggression.\u201d<\/p>\n

Krassenstein, however, shared further alleged evidence to show Musk\u2019s Ukrainian IP claims to be false. In a few chat screenshots shared, he could be seen asking Dark Storm about the Ukraine claim to which they said, \u201cElon Musk must provide evidence for his claim, and we will provide evidence for ours.\u201d<\/p>\n

\u201cWe can attack again. A stronger attack this time, not only on X but Tesla and others.\u201d Dark Storm <\/a>could be seen<\/a> adding in the chat. Dark Storm Team is a hacktivist group reportedly<\/a> founded in 2023, and is known for launching cyberattacks against entities they perceive as supporting Israel.<\/p>\n<\/div>\n<\/div>\n<\/div>\n<\/div>","protected":false},"excerpt":{"rendered":"

Elon Musk owned X experienced a flurry of outages on Monday, even as the Dark Storm hacking group claimed DDoS attacks on the text-heavy social media giant. The pro-palestinian hacktivist group reportedly claimed the attacks on a Telegram channel, posting \u201cTwitter has been taken offline by Dark Storm Team.\u201d Also added in the post were […]<\/p>\n","protected":false},"author":0,"featured_media":2266,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-2271","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-education"],"_links":{"self":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/2271"}],"collection":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"replies":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=2271"}],"version-history":[{"count":0,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/posts\/2271\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=\/wp\/v2\/media\/2266"}],"wp:attachment":[{"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=2271"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=2271"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cybersecurityinfocus.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=2271"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}