Pro-ISIS Hacking And Tech Group, Rabitat Al-Ansar, Shares Tech-Related Information On Telegram

June 20, 2016

Rabitat Al-Ansar, a pro-ISIS hacking collective, is active on the encrypted messaging app Telegram. The group’s account was launched on march 25, 2016, and has provided ISIS sympathizers with instructions on how to download software and programs to increase their online privacy and security.As of May 23rd, 2016, Rabitat al-Ansar’s Telegram account has shared 132 photos, 14 videos, 39 audio files, 27 files, 6 voice messages, and 156 links. The channel currently has 403 members.


Rabitat Al-Ansar is a part of a larger network of media, tech and hacking entities supporting ISIS. Some of its members, for example, were involved in hacking Facebook accounts, allegedly belonging to Shi’ites, in retaliation for their reporting of ISIS accounts on the platform.[1] The group also published various tech-related information, such as instructions on using different programs to increase users’ safety when using Android devices,[2] and on using VPNs for security and anonymity. Many of the phone-related instructions pertain to Android devices.

In May, 2015, Rabitat Al-Ansar was one of many groups credited in a propaganda video declaring a cyber-war on the United States and the West.


Following are examples of the content provided on Rabitat Al-Ansar’s Telegram channel:

On March 28, 2016, the channel posted instructions on the use of APK Permission Remover. Rabitat al-Ansar shared instructions on downloading and running the program, which is used to modify files and app permissions on an Android device.


On March 29, 2016, the group shared a tutorial on installing the Freedome VPN network.


On March 29, 2016, the group shared a link to, a website that displays a user’s IP and DNS addresses.


On April 1, 2016, the group shared instructions on downloading the Tutanota app –  a cloud-based encrypted email service.



On April 2, the group shared a link for Yopmail –  a disposable email service.


On April 11, the group shared instructions on using the encryption feature of the Linphone software –  a VoIP-based messaging program.



On April 11, the group  shared a download link for  ESET’s Android AV security suite.



On April 22, the group shared instructions on using TOR (The Onion Router), which provides anonymity for Internet users.




[1] See MEMRI JTTM report, Pro-ISIS Hacker Attacks Facebook Pages In Retaliation For Shutdown Of Pro-ISIS Facebook Pages, April 30, 2015.

[2]See MEMRI JTTM report, Pro-ISIS Group Gives Advice On Android Security, May 4, 2015