Middle East Cyber Escalation: From Hacktivism to Sophisticated Threat Operations

Group-IB observed a sharp spike in hacktivist activity between June 13–20 alongside several credible, operationally impactful cyber incidents: the Predatory Sparrow compromise and public leak of Nobitex source code and internal data, widespread GPS jamming/spoofing disrupting maritime and aviation navigation, hijacked emergency SMS alerts in Israel, exploitation of exposed IP cameras for strike assessment, and broadcast stream hijacks. The report contrasts largely symbolic, decentralized hacktivist behavior with targeted, higher-sophistication operations that pose immediate risks to civilian safety and critical infrastructure, and it concludes with actionable mitigations for DDoS, defacements, and data-leak monitoring.