The Handala Hacker Group, established in December 2023, is a politically motivated cyber threat actor primarily targeting Israeli entities and infrastructure. Named after the symbolic character Handala, created by Palestinian cartoonist Naji al-Ali, the group embodies resilience and steadfastness in its operations. ​

Handala maintains an online presence through a Telegram channel with over 3,500 subscribers and a Twitter account with approximately 270 followers. Their cyber activities encompass sophisticated attacks, including phishing campaigns, ransomware deployments, and website defacements. Notably, in March 2024, they claimed responsibility for compromising DRS RADA, a company specializing in multi-purpose tactical radars, threatening to leak 2 terabytes of data. Additionally, in June 2024, they conducted a ransomware attack on Ma’agan Michael Kibbutz, exfiltrating 22GB of data and sending over 5,000 warning SMS messages.

The group's activities underscore the evolving threat landscape where geopolitical tensions intersect with cyber warfare, highlighting the need for robust cybersecurity measures to protect against such ideologically driven attacks.​

Their TOR Showcase site http[:]//vmjfieomxhnfjba57sd6jjws2ogvowjgxhhfglsikqvvrnrajbmpxqqd[.]onion/​