The cyberattack on The Heritage Foundation by the group SiegedSec, self-labeled as “gay furry hackers,” made headlines on July 2, 2024. The group claimed responsibility for releasing two gigabytes of internal data from the conservative think tank, citing their opposition to the foundation’s “Project 2025” plans, which they see as supporting anti-trans and anti-abortion policies. SiegedSec viewed these plans as detrimental to the LGBTQ+ community and abortion healthcare rights.
The leaked data included sensitive information such as full names, email addresses, passwords, and usernames of individuals associated with The Heritage Foundation, including those with U.S. government email addresses. The group expressed their motivations on their Telegram channel, emphasizing their stance against Project 2025 and the policies it represents.
However, a spokesperson from The Heritage Foundation refuted SiegedSec’s claims, stating that the leaked data was from a two-year-old archive of The Daily Signal website, which was publicly accessible. The spokesperson dismissed the cyberattack as an exaggeration by a group seeking attention and denied any breaches into the foundation’s systems.
After the data breach, SiegedSec surprisingly announced their disbandment on July 11. They mentioned a pre-planned decision to retire from cybercrime, citing mental well-being and potential FBI involvement as reasons for their dissolution. The group also released chat logs with Mike Howell, an investigative columnist for The Daily Signal, showcasing offensive language and threats used by Howell towards SiegedSec members.
The chat transcripts supported SiegedSec’s claims, with Howell using derogatory language and homophobic slurs. Howell’s actions were further confirmed when he reposted the conversation on Twitter, leading to widespread attention. Despite this, SiegedSec maintained that their disbandment was already in the works before the recent events and media attention.
SiegedSec, led by “YourAnonWolf,” gained recognition prior to the Russian invasion of Ukraine, earning a reputation for their cyber activities and humorous self-description as “gay furry hackers.” The group, known for affiliations with GhostSec, targeted various organizations with their cyberattacks, displaying a youthful and dynamic approach to hacking.
Some of the organizations targeted by SiegedSec in the past include NATO, River Valley Church, AirAsia Berhad, Murphy Oil Corporation, and Telerad Bangladesh Ltd. Their disbandment marked the end of an era for the group, closing a chapter on their cyber activism and highlighting the controversies surrounding their last cyberattack on The Heritage Foundation.