Malaysian authorities have arrested a man on charges of hacking the personal data of more than a thousand US security forces personnel and providing them to ISIS in Syria, which could target the individuals, according to a statement released by the US Department of Justice on Thursday night.
The suspect, 20-year-old Ardit Ferizi from Kosovo who was residing in Kuala Lumpur, had moved to Malaysia to study computer science and forensics at a private institute in the capital on August 2014. He will be extradited to the US, police said in a statement.
According to officials, Ferizi is thought to be the leader of a Kosovan hacking group called Kosova Hacker's Security (KHS) and he allegedly passed the information to an ISIS member in Syria.
"The details were then transferred to the operation unit of the ISIS group for further action," the police said in a statement.
Between June and August, Ferizi hacked a US government server based in Phoenix and passed the information he stole to an ISIS commander, Junaid Hussein. He also shared a specific 30-page document which shows names, e-mail addresses, passwords, locations and phone numbers of 1,351 US military and government personnel.
“We are in your emails and computer systems, watching and recording your every move,” the document began.
“We have your names and addresses, we are in your emails and social media accounts, we are extracting confidential data and passing on your personal information to the soldiers of the khilafah, who soon with the permission of Allah will strike at your necks in your own lands!” the document added.
The US Justice Department statement said, "This posting was intended to provide (ISIS) supporters in the United States and elsewhere with the PII belonging to the listed government employees for the purpose of encouraging terrorist attacks against those individuals."
Malaysia has not seen any significant attacks from ISIS militants, but it has arrested more than 100 people this year on suspicion of having connections to ISIS.