Factcheck.bg, Bulgaria's most well-known fact-checking website that is well-known for combating Russian misinformation, was the target of a cyberattack.
However, the identity of its perpetrator is yet unknown. Numerous posts were removed as a result of the attack from Factcheck.bg, Facebook, and the Association of European Journalists' website.
According to the alerts, the posts were removed for reasons connected to spam, privacy policies, or cyber security.
WordPress, the platform utilised by the hacked sites, was found to have a suspicious plugin, according to a scan of the sites.
TPRM report: https://scoringcyber.rankiteo.com/company/factcheck-bulgaria
"id": "fac1816211023",
"linkid": "factcheck-bulgaria",
"type": "Cyber Attack",
"date": "09/2023",
"severity": "60",
"impact": "2",
"explanation": "Attack limited on finance or reputation"
{'affected_entities': [{'industry': 'Media',
'location': 'Bulgaria',
'name': 'Factcheck.bg',
'type': 'Website'},
{'industry': 'Social Media',
'location': 'Global',
'name': 'Facebook',
'type': 'Social Media Platform'},
{'industry': 'Media',
'location': 'Europe',
'name': 'Association of European Journalists',
'type': 'Website'}],
'attack_vector': 'WordPress plugin vulnerability',
'data_breach': {'type_of_data_compromised': 'Posts'},
'description': "Factcheck.bg, Bulgaria's most well-known fact-checking "
'website that is well-known for combating Russian '
'misinformation, was the target of a cyberattack. Numerous '
'posts were removed as a result of the attack from '
'Factcheck.bg, Facebook, and the Association of European '
"Journalists' website. The identity of its perpetrator is yet "
'unknown.',
'impact': {'data_compromised': ['Posts from Factcheck.bg, Facebook, and the '
"Association of European Journalists' "
'website'],
'systems_affected': ['Factcheck.bg, Facebook, and the Association '
"of European Journalists' website"]},
'initial_access_broker': {'entry_point': 'WordPress plugin'},
'post_incident_analysis': {'root_causes': 'Vulnerable WordPress plugin'},
'title': 'Cyberattack on Factcheck.bg',
'type': 'Cyberattack',
'vulnerability_exploited': 'Suspicious WordPress plugin'}