Nation Group, one of Thailand’s leading media conglomerates, has confirmed that it faced more than 200 million cyberattacks over a span of three days. The Nation Group cyberattacks targeted The Nation Thailand and Thai News, in what authorities are calling a coordinated Cambodian information operation (IO). These are the two key media outlets under the Nation Group.
The media group, which comprises over ten affiliated platforms, said in a official statement that the Nation Group cyberattacks began after the conflict on the Thai-Cambodian border break out on July 23, 2025.
Nation Group Cyberattacks: In Detail
According to Nation Group’s official statement, the cyberattacks appear to be a systematic attempt to disrupt Thai media reporting, especially platforms upholding journalistic ethics and standards. In a 24-hour window alone, the group’s main website, www.nationthailand.com, was hit with over 223 million requests, a classic Distributed Denial of Service (DDoS) attack aimed at overloading the server and making it inaccessible to users.
But it wasn’t just website traffic. The Nation and Thai News’ social media pages were also heavily targeted.
These included a flood of spam comments, fake account activity, false claims, and mass coordinated reporting to Meta with the aim of getting legitimate news pages taken down.
Framework of the Information Operation
The Ministry of Digital Economy and Society (DES), along with the Thai-Cambodian Border Conflict Command Centre, have outlined three main tactics used in this IO campaign:
- Fake Account Spam: Large number of fake accounts, allegedly created from Cambodian IP addresses, have flooded Thai news pages with disruptive spam, burying legitimate discourse.
- Mass Reporting to Meta: These accounts also coordinated to report Thai media pages and content on Facebook. The aim was to trigger automatic content removal or page suspensions by exploiting platform moderation algorithms.
- Spreading of Disinformation: Attackers posted misleading or false claims in comment sections and then mass-reported genuine responses. This increased the visibility of misinformation, giving it false credibility.
Therefore, group believe that this Nation Group cyberattacks was a targeted campaign to discredit and destabilize Thai media coverage during a politically sensitive period.
Nation Group Response Measures
To protect its platforms and audiences, Nation Group implemented geo-blocking to restrict access from Cambodian IP addresses. This move, while restrictive, was necessary to prevent further damage and ensure continued access for domestic readers.
In parallel, Thai authorities have stepped in. The National Broadcasting and Telecommunications Commission (NBTC) and DES Ministry are working closely with Meta (Facebook’s parent company) to address the abuse of social media reporting systems and restore the integrity of Thai media pages.
Despite the attacks, Nation Group emphasized that it will not be silenced. The organization reaffirmed its commitment to ethical journalism, public service, and responsible reporting even under digital threat.
“No form of cyberattack will deter us from delivering timely, credible information to the public,” the statement read.
They also stressed that the Cyberattacks on Nation Group are not just a threat to one media group but a broader challenge to press freedom, digital sovereignty, and citizen access to verified information during a time of conflict.
Nation Group has urged media organizations, tech platforms, and state authorities to collaborate more closely to prevent such cyberattacks in the future. They also called for more strong digital defense mechanisms to protect media independence.
The Cyber Express Team has reached out to Nation Group to get more information about the attack and what measure they are taking up to prevent it in future. However, as of writing this news copy, no official update was received.
For now, Nation Group says it will continue to do its job — to inform, report, and serve — regardless of the storm it faces online.
Source: Read More
