In recent days, Italy has been the scene of a series of cyber attacks that have affected numerous sectors, highlighting the vulnerability of national digital infrastructures. The pro-Russian hacker group NoName057(16), active since March 2022, has intensified its operations against institutional sites and major companies, exploiting the Distributed Denial of Service (DDoS) technique to make strategic platforms inaccessible.

NoName057 Attacks Institutions and Companies
The attacks, conducted for seven consecutive days, targeted the government sector, transportation, and the banking sector. In particular, the sites of the Ministries of Foreign Affairs, Enterprises, and Defense, along with those of the Air Force and the personal site of the Prime Minister, Giorgia Meloni, were hit. In recent days, other important entities such as Leonardo, Bank of Italy, the Transport Authority, Edison, Fininvest, and Parmalat have suffered similar attacks, and even the port of Genoa was targeted last Friday. These attacks caused temporary blackouts, resulting in significant disruptions for users and interruptions in the regular provision of digital services.

DDOS: Modus Operandi
The strategy adopted by NoName057(16) is based on the use of botnets, which are networks of compromised devices – computers, servers, routers, and IoT devices – remotely controlled to flood websites with a massive flow of requests. A distinctive element of this modus operandi is the use of the DDosia platform, which allows sympathizers to contribute to operations in exchange for financial rewards. This form of "crowdsourcing" of cybercrime has expanded the scope of the offensive, causing problems not only in Italy but also in other European countries.

Possible Motivations for the Attacks
According to statements released on the group's Telegram channel, the attacks are a direct response to recent statements by the President of the Republic Sergio Mattarella. During a speech at the University of Marseille, the head of state compared Russia's actions to Nazi expansionism, provoking a furious reaction from the hackers. In this context, the collective described their offensive as a “punishment for Italy,” in response to the political positions expressed by the president. Tension further increased when, this morning, the spokesperson for the Russian Foreign Ministry, Maria Zakharova, stated that Mattarella's words “will not go without consequences,” emphasizing how the statements could trigger reactions at an international level.

How to Reduce the Attacks
To counter this threat, Italian authorities have adopted advanced monitoring systems and implemented measures to mitigate malicious traffic. Techniques such as rate limiting, which limits the number of requests accepted in a given time frame, and the use of anti-DDoS services as indicated by the National Cybersecurity Agency (ACN) have helped reduce the impact of the attacks. However, the continuous evolution of cyber threats requires constant updates to cyber intelligence and close collaboration with international partners.
In conclusion, the offensive by NoName057(16) not only represents a technical challenge for Italian digital security but also a signal of growing geopolitical tensions. In an era where digital weapons play an increasingly central role, it is essential to strengthen cyber defenses and promote international cooperation to effectively combat cybercrime and ensure the protection of critical infrastructures.

Comments
No comments yet. Be the first!