Handala Hack announced a mass destructive operation on April 2, claiming to have wiped 22 terabytes of data across 14 Israeli organizations in what the group framed as a Passover message. The targets span a wide range of small to mid-size private businesses with no apparent connection to government or defense infrastructure.
The named organizations include Fuse Stereo, a family-owned home audio retailer based in Givatayim; Toledano Architecture and Design, an Israeli architecture firm; Mouth or Foot Painting Artists Ltd., the Israeli branch of an international association of disabled artists; and a handful of accounting practices including DanielBengioCPA and Gavriel Weiss C.P.A. The remaining targets appear to be similarly small private businesses across various sectors.
Video Evidence
This post was accompanied by multiple videos purportedly showing live access to internal systems across the named companies. The footage depicts what appears to be active file deletion on Windows machines across several of the listed organizations, lending the claim more weight. The tradecraft shown is consistent with Handala’s documented wiper operations, which have previously combined hands-on access with scripted mass deletion across compromised networks.
The operation is part of a broader wave of Handala activity against Israeli targets, which on the same date included an alleged breach of Israeli defense contractor PSK Wind Technologies.
Pattern of Destruction
Handala Hack, linked by security researchers to Iran’s Ministry of Intelligence through the Void Manticore cluster, has escalated its operations significantly throughout the current conflict. The group has moved well beyond data theft into actively destructive campaigns, most notably the March 2026 attack on Stryker Corporation that remotely wiped more than 200,000 devices. Civilian organizations with limited security resources have increasingly found themselves in the group’s crosshairs alongside higher-profile targets.
The broad and apparently indiscriminate victim selection, which includes a disabled artists association and small accounting firms, is consistent with Handala’s pattern of high-volume civilian-facing operations designed to maximize psychological impact.
