Slashdot Mirror
HBGary Federal Hacked By Anonymous
An anonymous reader writes "As the coin was tossed to kick off Superbowl XLV, Anonymous unleashed their anger at a security firm who had been investigating their membership. HBGary Federal had been working on unmasking their identities in cooperation with an FBI investigation into the attacks against companies who were cutting off WikiLeaks access and financing. Unlike the DDoS attacks for which Anonymous has made headlines in recent months, this incident involved true hacking skills."
Well, keep in mind that it is about the least effective racial slur ever invented. I don't know of anyone who when called a cracker wouldn't just laugh.
Even worse, this may have been a honeypot, meant to attract more anonymous actions to gain more evidence to put them away for longer terms.
Those guys don't even think.
If you need web hosting, you could do worse than here
I work for a telecom dealer that specializes in fulfilling corporate needs. All corporate sales are done through our website. A few of our clients are security companies. One of them (which will go unnamed) has a key purchaser who is completely computer illiterate. When trying to troubleshoot her difficulties using our website, I asked what browser she was using. She replied "Office 2003".
After patiently instructing her on how to determine her browser and version number, it turned out she was using IE6. That was about 2 years ago. They still use IE6 to this day and have no intentions of switching off of it. Having dealt with a large variety of companies over the years, I think security firms are the most technically inept and the most likely to completely disregard online security.
Idiot.
They are completely prepared.
'Anonymous' just walked into an ambush.
These guys have been watching whats going on, following what they've been doing, and are working with the FBI ... do you really think no one thought in advanced 'hey, when we piss them off, they'll come after us too!'
No ... they thought of it in advanced and said 'perfect, now lets set it up so we can have it setup in a perfect way for us to gleen the absolute most information in the process.
Anyone stupid enough to do this isn't a major player anyway, or won't be for long. They basically just started a war with the cops, the only thing you can do to piss off a cop more than embarrassing them is killing one of them. So now they've changed it from being an annoying bunch of twits who don't really do any damage and no one is going to invest any serious effort into finding ... into a matter of personal pride for every person working on it. They also have the advantage of funding and not having to cower in mommies basement.
This just shows the ignorance 'anonymous' has ...
If you'd have payed attention in school you'd know mob justice isn't a good idea, perfect example here.
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
A good security firm doesn't lock down everything super tight. It can be done of course, but doing so is a major inconvenience. A good security firm knows how to manage risk, and apply enough security to outweigh the risk. As if any of those things that got "pwned" are of any real consequence.
This is the equivalent of someone running up and spray painting the side of an armored truck and declaring victory in defeating their security. lol.
Or perhaps calling into question how safe a bank is because someone stole their mailbox.