December 2, 2023

This week, the Purple Cross issued moral tips for civilian hackers concerned in armed conflicts, sparking ridicule from hacktivists in Ukraine and Russia.

On Wednesday, the pro-Ukrainian hacker group Hdr0 defaced the web site of the Russian department of the Purple Cross, changing the content material of the primary web page with its personal message.

The message had been taken down on the time of publication, however the hackers archived and shared it.

“There aren’t any guidelines in battle. And the Purple Cross, smeared with the blood of our troopers in captivity and the tears of our kids, has no authority to recommend or set up something,” the hackers stated in an announcement on Telegram. “We are going to use each alternative to trigger probably the most hurt to our enemy utilizing any means accessible.”

Different Ukrainian hackers felt the identical manner.

“Purple Cross? I do not care about their calls for and I will not even take into consideration them,” the pro-Ukrainian hacker group Cyber Anarchy Squad wrote on Telegram. “If I wish to fuck up crucial infrastructure, I’ll do every part to fuck it up.”

The Purple Cross tips included eight “humanitarian law-based guidelines,” reminiscent of threatening civilians or concentrating on sure infrastructure.

Based on Sean Townsend, the press secretary of the Ukrainian Cyber Alliance, “cyber is among the most humane methods” to focus on the enemy’s crucial and civilian infrastructure, reminiscent of hospitals, railways, energy vegetation, and communication methods — particularly in comparison with bombings and different damaging assaults.

Townsend stated the Purple Cross must be extra involved “about Russia’s official coverage towards Ukraine, which incorporates genocide, ethnic cleaning, extrajudicial killings, and torture.”

“I do not want the “safety” that the conventions supply to civilians. I wish to witness with my very own eyes the trial of Russian criminals and never change into their subsequent sufferer,” he added.

Professional-Russian hacking teams Killnet and Nameless Sudan advised the BBC that they’d ignore the Purple Cross and that its guidelines are “not viable and breaking them for the group’s trigger is unavoidable”.

The Belarusian Cyber Partisans did not instantly tackle the Purple Cross tips, however within the earlier month, they hacked the web site of the group’s Belarusian department, changing the primary web page content material with an inventory of crimes dedicated “by this pro-Lukashenko group in opposition to the folks of Belarus and Ukraine.” This contains the deportation of Ukrainian youngsters to Belarus.

“Earlier than the ICRC places ahead these guidelines, it should state its official place on how its branches in Russia and Belarus are being utilized by totalitarian regimes to abduct and illegally site visitors Ukrainian youngsters from occupied cities within the Donbas area to Belarus,” one of many Nameless hacker channels posted on Twitter.

Moral tips

Based on the Purple Cross tips, hacktivists should not goal civilian objects or deploy malware that may affect each army and civilian infrastructure. Sure targets, like medical and humanitarian amenities, consuming water methods, and unsafe vegetation “must not ever be focused.”

In the course of the battle between Ukraine and Russia, none of those guidelines have been adopted.

The Worldwide Committee of the Purple Cross was additionally the sufferer of a cyberattack. In 2021, unidentified menace actors breached ICRC servers containing data on over 500,000 people who had used household reunification companies.

Final yr, the ICRC stated it wished to create a “digital pink cross emblem” that may clarify to army and different hackers that they’d infiltrated the pc methods of medical amenities or Purple Cross places of work.

“For over 150 years, symbols such because the pink cross have been used to clarify that “in instances of armed battle, those that put on the pink cross or amenities and objects marked with them have to be shielded from hurt,” the ICRC stated.

Get extra insights with the

Recorded Future

Intelligence Cloud.

Study extra.

No earlier article

No new articles

Daryna Antoniuk

Daryna Antoniuk
is a contract reporter for Recorded Future Information based mostly in Ukraine. She writes about cybersecurity startups, cyberattacks in Japanese Europe and the state of the cyberwar between Ukraine and Russia. She beforehand was a tech reporter for Forbes Ukraine. Her work has additionally been printed at Sifted, The Kyiv Impartial and The Kyiv Put up.