Cutting Sword of Justice

Cutting Sword of Justice – Who are they?

The Cutting Sword of Justice is difficult to identify and, therefore, to research but the “groups” attack on Aramco, Saudi Arabia’s national oil company damaged 30,000 computers, according to a Reuters article in the New York Times.  (NYT, 12/9/12) The group released a virus called Shamoon. Some reports suggest the virus might have been released by an employee who had access to Aramco’s computer systems (Defence, 1/22/13). In an interview with Major Gen. Mansour al-Turki of the Saudi Interior Ministry said the attack came “from an organized group on four continents” (NYT, 12/9/12). In Pastebin posts after the attacks the group claims that no employees were involved in the attack and urges Aramco to “…please stop hurting the employees and torturing them.” (Pastebin, August 17, 2012.)

• Structure:  The group’s structure is unknown but as suggested above there are more than one.  One small hint of their whereabouts is in their Pastebin post, “We, behalf on an anti-oppression hacker group that have been fed up of crimes and atrocities taking place in various countries around the world, especially in the neighboring countries such as Syria, Bahrain, Yemen, Lebanon, Egypt … (Pastebin, 8/15/12)
Communications: The Shamoon attack made national media coverage. A Google search of “Cutting Sword of Justice Shamoon” produced 8,890 results. Apparently the Cutting Sword of Justice doesn’t use social media nor do they have a website. The group posts on a site called Pastebin, a site used to store text for a “set period of time.” (

  • Recruitment: On their Pastebin site the group invites “…anto-tyranny hacker groups all over the world to join this movement.” (Pastebin, 8/15/12).
  • Attacks: It looks like Shamoon virus, although an effective attack, was the one and only attack by this group. The group attacked  Aramco, Saudi Arabia’s national oil company. The attacked damaged some 30,000 computers. The group claimed they were able to steel documents form the company, but according to a New York Times article by Reuters, none of the documents were published.
  • Goals: On their Postbin site the group says that they hacked into Aramco because the company “sponsors oppressive measures by using Muslims (sic) oil resources.” The group states that they are against “tyranny and oppression” especially in Syria, Bahrain, Yemen, Lebanon, Egypt.
  • Financial Support: Their financial support is currently unknown.

Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s