If you thought that the tensions around the control of Strait of Hormuz is the peak of the US-Iran war, Iran might have just proved you wrong. After deadly tensions on the ground and in the air, Tehran seems to have taken the war on the cyber front, targeting and leaking personal details of thousands of US Marines.
A cyber group linked to the Iranian government is reported to have targeted thousands of American service members and other US government officials in cyberattacks over recent months, marking a potentially significant escalation if confirmed in the ongoing West Asia conflict.
The Wall Street Journal, citing US officials, reported that the Handala Hack Team on Tuesday (April 28, 206) published the names and other personal details of 2,379 US Marines stationed in the Persian Gulf region. The hackers shared identifying information on Telegram, presenting the leak as evidence of their “surveillance capabilities”.
US Marines data leak: What kind of data was exposed and how serious is it?
According to Iraq-based Shafaq News, US personnel stationed in the region were sent threatening messages on WhatsApp, warning that they were under watch and could be targeted. The group claimed it had access to deeper layers of data, including family information, home addresses, and even details about daily routines and troop movements.
It also signalled that more disclosures could follow.
“This is just a drop in the ocean of our surveillance capabilities,” the group wrote, claiming it possesses the identities of “tens of thousands of American military personnel in the region,” along with “detailed knowledge of their families, home addresses, bases, daily commutes, shopping habits, and even their nightly leisure activities.”
The text further read, “Your identities are fully known to our missile units, and every move you make is under our surveillance. Very soon, you will be targeted by our Shahed drones and Kheibar and Ghadeer missiles. We will deal with you, the terrorists whose hands are stained with the blood of the Minab schoolchildren. We suggest you call your families now and say your final goodbyes,” Stars and Stripes reported.
How has the United States responded to the claims?
According to US officials, the Pentagon has launched a probe into the claims. Initial indications suggest that at least some of the names released are those of military members. Investigators believe Handala is also targeting members of other service branches, indicating that the scope of the cyber campaign may be broader than initially reported.
If verified, the cyberattacks could represent a shift in the nature of confrontation in the region, from conventional military engagements to hybrid warfare involving cyber operations and psychological tactics.
Targeting personal data of active-duty personnel, along with alleged threats to their families, signals an expansion of conflict into non-traditional domains.
It is worth mentioning here that the Handala Hack Team has previously surfaced in high-profile cyber incidents. Last month, Handala claimed it had breached FBI Director Kash Patel’s personal inbox, publishing photographs of the director and his purported resume online. On its website, the group stated Patel “will now find his name among the list of successfully hacked victims”.