The British Army, Royal Navy, and the Office for Nuclear Security have been hit with cyberattacks by an alliance of pro-Russian and pro-Palestinian hackers, it has emerged.

The simultaneous attacks targeting the agencies’ websites were carried out last month, hacker Mr Hamza claimed on the Holy League coalition’s Telegram Channel.

‘Our message is clear: this is just a warning … and worse is yet to come,’ the pro-Palestine hacker, who is believed to be based in Morocco, posted.

The Holy League coalition is comprised of roughly 90 ‘hacktivist’ groups that are unified by their despise for western values and have vowed to ‘wage cyberware’ against Ukraine, Israel and their allies.

The coalition reportedly includes hackers trained by the Iranian Revolutionary Guard Corps (IRGC) and groups who work alongside Russian intelligence. 

Britain has become a bigger target after having taken a more prominent leadership role in support of Ukrainian troops over the last months, analysts told The Times. 

GCHQ recently issued a warning about the ‘stark increase’ in threats from state-aligned hacktivists looking to target Britain’s critical infrastructure systems. 

The majority of attacks are rudimentary distributed denial of service (DDoS) strikes that overwhelm a website or online server with traffic to make it inaccessible. 

Experts note that DDoS attacks are relatively ‘low impact’, typically lasting just a few minutes, but can cause significant disruption to a website’s services and interfere with its defences, making it easier to hack into the site.

The British Army, Royal Navy, and the Office for Nuclear Security websites have been hit with cyberattacks by an alliance of pro-Russian and pro-Palestinian hackers. Pictured are British and Romanian soldiers during a NATO Allied Reaction Force (ARF) training exercise in February

The British Army, Royal Navy, and the Office for Nuclear Security websites have been hit with cyberattacks by an alliance of pro-Russian and pro-Palestinian hackers. Pictured are British and Romanian soldiers during a NATO Allied Reaction Force (ARF) training exercise in February

Britain has become a bigger target after having taken a more prominent leadership role in support of Ukrainian troops over the last months, analysts have claimed. Pictured are Romanian and British soldiers training in trenches on February 17 in Smardan, Romania

Britain has become a bigger target after having taken a more prominent leadership role in support of Ukrainian troops over the last months, analysts have claimed. Pictured are Romanian and British soldiers training in trenches on February 17 in Smardan, Romania

The simultaneous attacks targeting the British Army, Royal Navy, and the Office for Nuclear Security were carried out last month, hacker Mr Hamza claimed on the Holy League coalition's Telegram Channel

The simultaneous attacks targeting the British Army, Royal Navy, and the Office for Nuclear Security were carried out last month, hacker Mr Hamza claimed on the Holy League coalition’s Telegram Channel

The alliance is reportedly launching weekly cyberattacks against the UK’s state agencies, armed forces, infrastructure operators, councils and security services, including the MI6 website which was allegedly targeted in March. 

National Highways, the North East Combined Authority and several local councils were attacked by Holy League member NoName057(16) in January after Britain and Ukraine signed a 100-year partnership.

The alliance also launched a wave of attacks targeting the UK in December last year as retaliation for Ukraine’s use of British Storm Shadow missiles, according to the Times.

The Holy League was created last summer by Abu Omar, a cybercriminal and leader of the Cyber Islamic Resistance.

In an interview with Kremlin-backed state media last November, Omar revealed that he works with partners from Russia, Belarus, Morocco, Egypt and Algeria, as well as with ‘my brothers in the Middle East’.

He also claimed that the Cyber Islamic Resistance had been trained by an IRGC militia group in Iraq called the Badr Organisation.

Omar told the outlet that he wants the conflicts in Ukraine and Gaza to ‘end with the destruction of the ‘Evil Empire’, including Ukraine, Israel and NATO’.

The Holy League has claimed responsibility for several attacks targeting intelligence services across Europe. The group supports its claims by providing evidence from ‘check host’ links that demonstrates how long a site was down for.

The alliance is reportedly launching weekly cyberattacks against the UK's state agencies, armed forces, infrastructure operators, councils and security services. Pictured are British soldiers practising an assault on February 17, 2025 in Smardan, Romania

The alliance is reportedly launching weekly cyberattacks against the UK’s state agencies, armed forces, infrastructure operators, councils and security services. Pictured are British soldiers practising an assault on February 17, 2025 in Smardan, Romania

Carr members Yuliya Pankratova (pictured) and Denis Degtyarenko, both Russian nationals, were sanctioned by the US government in July 2024 after they allegedly hacked into water facilities in the US and Poland Pankratova and Degtyarenko (pictured) also allegedly disrupted operations at a facility in France

Cyber Army of Russian Reborn (Carr) members Yuliya Pankratova (left) and Denis Degtyarenko, (right)  both Russian nationals, were sanctioned by the US government in July 2024 after they allegedly hacked into water facilities in the US and Poland. The pair also allegedly disrupted operations at a facility in France

Members of the Cyber Army of Russian Reborn (Carr), which is believed to working for the Russian military intelligence agency’s cyberwarfare unit, are understood to be part of the Holy League. 

Carr members Yuliya Pankratova and Denis Degtyarenko, both Russian nationals, were sanctioned by the US government in July 2024 after they allegedly hacked into water facilities in the US and Poland. The pair also allegedly disrupted operations at a facility in France.

Carr and a hacker known as NoName057(16), whom Ukrainian intelligence have identified as Pankratova’s husband Artem, attacked the M6 toll road in Britain on December 6 last year.

A UK Government spokesperson said in a statement to The Times that it does not ‘routinely comment on cyberactivity claimed by online groups’.

‘The government is committed to using all of its levers to disrupt cyberthreats and to keep the public safe,’ the statement added. MailOnline has approached authorities for comment.

***
Read more at DailyMail.co.uk