A threat actor on a dark web forum has allegedly announced the sale of high-level access to a major government website in Lebanon. In a post made recently, the actor claims to have successfully breached a “top Lebanon Government Website” and is now offering this access to paying customers. To protect their foothold within the network, the seller has deliberately withheld the name of the compromised government entity, stating, “If we announce it, they will remove our access.”
The government of Lebanon, officially the Lebanese Republic, is the central governing authority of the Middle Eastern country. Its digital infrastructure is vital for national administration, public services, and storing sensitive citizen information, making any such breach a significant national security concern. The threat actor is exclusively seeking a monetary transaction for the access, providing a Monero wallet address and contact details via TOX and Session for interested buyers, while explicitly stating the access is “Not for Swap”.
