DragonForce Malaysia

DragonForce Malaysia is a pro-Palestinian hacktivist group that has conducted politically motivated operations targeting Israel and entities directly or indirectly supporting Israel. It returned for a third year with an anti-Israel campaign branded OpsPetir, which replaced its earlier OpsBedil branding and overlapped with the broader OpIsrael campaign. Reported early OpsPetir targets included Israeli universities and financial institutions, and expected target sectors also included religious organizations, healthcare, service providers, transportation entities, and government agencies. Reported DragonForce Malaysia activity focuses on threat messaging, mobilization, and disruptive operations rather than confirmed ransomware activity. Radware assessed that its likely attack methods include scanning, exploitation, data dumps, denial-of-service attacks, and website defacements. The group has used or promoted a DDoS tool called CyberTroopers, described as an obfuscated Python program with TCP, UDP, and HTTP flooding capabilities that can pull free proxy and SOCKS lists from free-proxy-list[.]net and proxyscrape[.]com to help randomize apparent attack origin and complicate Layer 7 mitigation. The group operates an active forum used for campaign announcements and discussion of tactics, techniques, and procedures, and also maintains a Telegram channel with content replicated to Discord and other social media platforms. It has been observed collaborating with T3 dimension Team, Reliks Crew, and AnonGhost. Known campaigns mentioned in the content include OpsBedil (launched in June 2021), OpsBedil Reloaded (April 2022), OpsPetir, and OpsPatuk targeting India. During the 28 February to 1 March 2026 Middle East escalation, DragonForce Malaysia was also named among hacktivist groups active or claiming activity. One report notes only an unconfirmed possibility of a relationship between DragonForce Malaysia and DragonForce ransomware; this linkage is not confirmed in the provided content.