Slashdot Mirror
Hacker Group LulzSec Challenges FBI
Tiek00n writes "Hacker Group 'LulzSec' has gained some attention recently for their hacks of PBS and Sony. Their most recent target: FBI affiliate Infragard. The group claims, 'It has come to our unfortunate attention that NATO and our good friend Barrack Osama-Llama 24th-century Obama have recently upped the stakes with regard to hacking. They now treat hacking as an act of war. So, we just hacked an FBI affiliated website (Infragard, specifically the Atlanta chapter) and leaked its user base. We also took complete control over the site and defaced it...'"
Well done LulzSec. Exposing the hypocrisy in the US government... condemning hacking while funding it themselves.
FBI? Puh-leaze.
Hack Section 31 and then I'd be impressed.
Slashdot needs Geekcode | Can anyone recommend any good SCIFI? My tastes: Foundation, Startide Rising, CITY, Ringworld,
Take a site down first and then make sure it stays down by slashdotting it.
Or is Slashdot slashdotted? These 503 errors have been happening for a couple of days now.
So it's clear from the emails leaked that the US of A just started a war with Libya.
If the US Government suffers from a DDoS attack, who will they attack? The world? Just wondering...
I wonder if the people of the USA have any legal recourse to arrest our own government for illegal acts of war since the evidence is out in the open, not to mention violating human rights by attempting to maintain slave labor conditions (The recent Levi Strauss/Haiti revelation) for profit.
Oh, and shall we drop on charges of illegal renditions of other countries leaders (how do you think Haiti happened?)
Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
"Now we are all sons of bitches , Lulz Security". I approve of the Manhattan project reference.
Donate BitCoins for more lulz: 176LRX4WRWD5LWDMbhr94ptb2MW9varCZP
"I assumed blithely that there were no elves out there in the darkness"
We see with Apple and Google phones tracking people, SSD not being securely erased, police with gadgets that rip all data off cell phones, back doors in routers, NSA rooms on the AT&T backbone servers, printers with secret yellow codes, carriers recording GPS coordinates 8 times a hour, TOMTOM and ONStar snitching the list goes on and on... We see EXACTLY what the jack booted government thugs are making the industry do with products we need to use, grossly invading the rights of everyone in the process and under the guise of trying to catch a few bad guys. Enough is ENOUGH!
LulzSec just showed their hand that they are operating like a schoolyard bully. "Do what we want / act like we want, or we'll hack you."
You might think they are standing up to a bully (USA), but taking down 3 different Sony companies smells of a bully, kicking them while they are down.
The only thing that's going to be funnier than seeing an FBI-affiliated site defaced is all of their doors getting kicked in via no-knock warrants and their computers seized. It's hard to be little arrogant pricks on the internet without a computer.
Those guys are faceless and nameless. We won't know who disappeared when they disappear. We will just know they disappeared.
Prepare to see your Interwebs go on 24/7 lockdown.
Time to set up that VPN on a foreign VPS that you always wanted.
As silly as the language looks, my gut tells me that some of these guys are actually pretty savvy, and I don't think it's very hard to hide on the internet if you actually know what you're doing. As long as these guys don't brag about it openly in pubs, I bet many will never get caught.
I mean, c'mon - they couldn't find Osama Bin Laden when he was living in the same house for many years - what makes you think they'll magically be able to find hackers?
I'm certain that if any of them DO get caught, it will be because they did something stupid - not because the search party did something smart.
They'll be in supermax prison for decades when they get caught!
Who is "they"?
No, "LulzSec" is not the answer.
I hope they are very good at what they do, because they just painted a huge target on their backs.
Security ?! you don't say OMG ; ROFL for that .... Lulz for that.
...to find this all frickin' hilarious?
Wildly entertaining as a spectator.
I mean, right?
Let's say a citizen, or many citizens, are shot. If it's done by another US citizen, it's murder, a crime, and not an 'act of war.' If it's done by some organization, it's homebrew terrorism. If it's done by another country, it's an act of war. That doesn't seem like a wholly unreasonable stance to hold, although it certainly can be debated, I guess.
I don't know, are these people going for the "That's a ridiculous stance on hacking, what are you gonna do, declare war on US?? How ludicrous! See, hacking is not an act of war" angle to this whole thing?
If so.....lulz.
(and by well, I mean with prison sex).
Take down Majestic 12, then we're talking!
^ I don't mean to compare hacking with killing people, by the way. What I meant is that it should be pretty obvious, really, that the same actions would be classified in and treated in different ways depending on who the perpetrators are.
Funny how the ratio of Anonymous Coward comments to logged in user comments seems to have spiked on this thread.
As long as these guys don't brag about it openly in pubs, I bet many will never get caught.
You pull at the loose threads until the whole fabric begins to unravel.
I mean, c'mon - they couldn't find Osama Bin Laden when he was living in the same house for many years - what makes you think they'll magically be able to find hackers?
The hacker is an adolescent braggart who thinks he is bullet-proof.
Osama's father made billions on construction projects for the Saudi royal family. Osama's share was worth $100-300 million. That bought a lot of protection these hackers do not have.
But Osama is still dead.
So, they didn't even salt the md5 hashes. How lazy does this "security" firm want to be?
Also, how simple do some of these passwords want to be? LOL "infragard26j" are you kidding me? Come on IBM, lift your game!
Here's a copy of the exposed file on PasteBin
I've noticed that the "cracking" method of choice was just "see if these are known values in public rainbow tables". Which, many of them were. Huzzah!
Also, I thought that all md5's had been cracked before, however it seems not so. So, I decided to calculate how many gb such a table would AT LEAST have to be. Well, I was quite surprised. Unless there's collisions or my math is fucked, that's quite a lot!
Seems Unveilance, the company which had its CEO's private emails leaked, has responded and sort of, also authenticated the hack too. Unveillance Official Statement
This is my footer. There are many like it, but this one is mine.
Re Section3 Band
"Glad you like it! Our influences are pretty broad - punk, new wave and goth mostly but there's also a lot of electronic stuff and even a smattering of ska in our shared tastes. We mostly play venues like The Underworld and Purple Turtle in Camden, and clubs like the Slimelight. We missed out on the European festivals this year, since we didn't have a promo ready in time, but should be playing some club gigs on the continent in the Autumn."
Heh you made me nuke my moderations so I could reply to you!
As a Real Live Artist why do you only have "stream playing"? Why no mp3 downloads? What is your opinion on the copyright mess?
(Don't hurt me mods, copyright tyranny is 3 degrees of separation from hacking!)
My first Journal Entry ever, in 8 years! http://slashdot.org/journal/365947/aphelion-scifi-fantasy-horror-poetry-webzine
Yeah, that's been there for ages now. I ad-blocked the spinning thingie but it's still there.
My first Journal Entry ever, in 8 years! http://slashdot.org/journal/365947/aphelion-scifi-fantasy-horror-poetry-webzine
Keep exposing the corporate and government hypocrisy, lies, and bullshit. It's groups like this and wikileaks that truly need support of the people. ignore the propaganda lies that mass media and corporate shill websites will tell you.
I've always wondered how secure slashdot is. Let's do an experiment. Mod me up to +5 insightful, and see if LulzSec hacks /. to bring my post down.
And for good measure: Assange should be in jail, child pornography is evil, and Ron Paul would make a terrible president. There, that should lure them out.
This rule in Adblock Plus takes care of it:
slashdot.org##.busy.genericspinner.hide
I'll reply to you.
We can't even tell if this is a False Flag or some semi-well-intentioned young hacker group.
The Govt is playing a pretty good chess game "establishing the pre-requisites of tyranny". Of course they have some logical fallacies built in, that's why Division by Zero is illegal in math - you then enter fantasy land.
I am only one of many who saw this coming, but all I can do is educate and hope someone with some clout notices.
My first Journal Entry ever, in 8 years! http://slashdot.org/journal/365947/aphelion-scifi-fantasy-horror-poetry-webzine
first Infragard claimed LulzSec tried to extort money from them while LulzSec claimed they offered the money to stop the hacking. Infragard is lying and LulzSec is wrong about Infragard trying to stop their sinking company. how do i know? simple logic.
if there is one thing that is traceable in this world, it's money. Infragard was not sinking like LulzSec claim (hence being wrong) but rather Infragard was setting a trap.
in the event that LulzSec tried to extort money, Infragard would have jumped on the chance to track them down (they have the FBI on their side!). when that didnt work, what better PR move than to claim and evil group of hackers was trying to get money out of them to try to divert attention to the reason behind the hacking?
Infragard got pwn3d and know it. lying isnt a crime unless under oath and i would put money on it that they would lie anyway.
Infragard == liars with bad security.
Anons need not reply. Questions end with a question mark.
As we may be able to get he psychopathic few (gov, mil. and their business associates)....(in comparison to the 7 billion population) to put on their virtual reality helmets where we can trap them into their delusional world of control freaks and war mongers addicted and as such make the world real and a lot safer for the rest of us.
When the Police come for you, please resist.
I think Osama Bin Laden tried something similar once...
Well, I guess they pretty much guaranteed now that the US government will kick their asses eventually...
Well played, dumbasses, now everyone is paying attention!
Are you positive that Lulz is not a government/theocratic cyber warfare unit operating out of Europe or the Mid-East or China or Cuba or Venezuela? In other words, people who have ponies in the race? How can you be sure?
Or, is it your attitude that while the above mentioned countries can and do have cyber warfare units it is wrong for the USA to have its own unit too?
One never reads about these "hackers" breaking into Russian or Chinese government websites and then releasing documents they steal. Why is that? Could it be that they know that they are not as "invisible" as they brag to be, and that if they did attack those sites it wouldn't be long before they were sleeping with the reporters whom Putin didn't like, or they'd suddenly wake up in a Chinese or Iranian prison?
And, to the idiot who claimed that "hacking never hurt anyone", talk to the people who were put in harms way by WikiLeaks sloppy editing of stolen documents containing the names of people.
The RICO and PATRIOT Acts, along with the TSA, have done enough damage to citizens of the USA without having hackers further the harm. It's time for rational people to replace the Rude-Goldberg security arrangements created by the DHS. But, let's imagine that Lulz and WikiLeaks are successful in creating a citizen uproar that results in the activities of USA espionage agencies being severely, although irrationally, curtailed. When those agencies can no longer prevent the smuggling of a disassembled Pakistani or Iranian nuclear bomb into the country and, say, Denver, CO disappears in a mushroom cloud, will you be happen then?
Running with Linux for over 20 years!
Well, you're probably wrong there. These guys have a whole lifetime of hiding ahead of them. They'll always be looking over their shoulders. Just run the numbers: What, 35,000 FBI employees, erm, now enemies, and similar numbers of Sheriffs, Secret Service, CIA, DIA, Marshals, Naval, Army, Air Force, Marine Intelligence. That's just the U.S. Government. How about other countries security agencies. I'm particularly worried about Australia's security agencies which are empowered by some particularly onerous laws concerning hacking. But what about the non-governmental agencies. Criminal groups that may be threatened by this type of behavior. Rival hacker groups, jealous lovers. All the people that have been negatively impacted by this. Or what about just ordinary people who disagree with their actions and willingly help the authorities, network operators and employees who may have seen something suspicious on their network and reports it? Just as LulzSec obviously enjoys what they do, there will be an analog of people who will enjoy finding them. No, these persons have clearly not thought out the consequences of their actions. Eventually, they will be caught. The weight of running and hiding will be a prison in itself. Can they picture themselves, living like Sadaam Hussein in a hole, or Bin Laden in a virtual prison, never venturing out in public? The pressure to maintain sanity will be enormous. Any people foolish enough to help hide them will also find their guest's presence a burden. Even their "freedom" will not really be freedom at all.
Run a finger up the ass of everyone who's downloaded Bitcoin in the past couple of years.
Well the US government managed to declare a war on terror which is essentially a war on its own citizens given how they've starting tracking them, invading their privacy, and essentially stripping them of any of their human rights (rights provided by the constitution or otherwise). So they've already got their internal war. Not much more for them to do there, all they've got left to do is the same thing for all other nations which they haven't done it to.
I have left slashdot and am now on Soylent News. FUCK YOU DICE.
Quite right, the most likely way is that any of them did something stupid -- like having a fellow member know information on them. That way, the bounty merely has to increase before some chart of prisoner's dilemma kicks in with matrices in the US Government's favor.
So if you're treating this as a joke, grow up. These are real actions with real consequences.
Ho-ho. Very manly. Big boys and that. Only that the big boys are behaving like pre-teens themselves. Remember: "launching an assault by good-old physical means" usually entails real harm to real people. Definitely a completely different kettle of fish.
the 20th century should have been the end of legitimate arguments for overreaching state power, govrment secrecy, and police states, with (at least) 50 million people directly killed in concentration & labor camps for the benefit of a bureaucracy.
compare that to a few thousand people killed by terrorism, it doesnt even begin to compare. we should be locking up anyone who even approaches moving in a dictator-ship like direction, because the threat of terrorism is just about as dangerous as the threat of perscription medication or tornados, while the threat of overreaching government is as real as the bricks at auschwitz.
information about bio, chem, and nuke weapons is not rocket science. building a nuclear bomb is not rocket science. its nuclear science and its not that hard. the only hard part is gathering enough fissile material.
but governments are paying more attention to frisking babies than to keeping tight controls on uranium mines.
there was a whole warehouse full of yellowcake sitting in Iraq before the war - the us barely even tried to secure it.
LEGEND
As far as I can tell they haven't said, or done, "We are going to go around hacking anyone we want and nobody can do anything about it. However if you hack us we'll bomb you!" What they've said is "An attack on US infrastructure by a foreign power is an act or war, and it really doesn't matter what form that attack takes."
That is a position quite consistent with US history and law, and internationally too. It isn't like there is only a well defined set of things that can qualify as an act of war and if you can find a way to attack outside of that you are a-ok. If a government commits or sponsors an attack against another country, whatever the nature, that can be an act of war. Hence the clarification.
If you want a somewhat similar example, any damage/disruption to the computer labs at work (a university) that I run are grounds for me to call the police and you to get arrested. If you physically damage the hardware, paint on the walls, whatever, that'll do it. However hacking, same shit. If you screw up the systems or install keyloggers or something I'll still call the police nad you'll still get arrested. Trying to say "But it didn't hurt anything real!" isn't a defense. If you cause damage or disruption, physical or virtual, you caused harm and you are gonna get in trouble.
I think too many geek types have this view that anything done on a computer shouldn't count. They are people who will argue they should be allowed to freely break in to any system they are capable of doing so without any repercussions, yet would be furious if I broke in to their house. In the real world, doesn't work that way.
I miss the old days where a hacker was just someone who gained access to networks 'just because' and not to reveal the private information of strangers. And there is a big difference between hacking because someone disagrees with you, and hacking as a response to government intruding on freedom of speech. Lulz is just silly.
Uh, you mean hacking a computer is like shooting someone?
Really?
expandfairuse.org
Ah, finally. Thank you, that's one annoyance gone.
A Twitter contact pointed me to this article over at Jaded Security. There's something shady about this guy Karim Hijazi who allegedly was extorted.
Who is to blame for the success of the latest round of attacks?
http://jadedsecurity.net/2011/06/04/who-is-to-blame-for-the-success-of-the-latest-round-of-attacks/
Richard Steven Hack - This sig is TOO GODDAMN SHORT TO DO ANYTHING USEFUL WITH! MORONS!
Can't wait until these guys are rotting in a cell deep in some military complex. Really, "Osama" and all the other name-calling? Not only are they terrorists, they're like 12 year old terrorists. Their mommies need to put them out of their misery, but I'll take the government doing it to. Anyone praising LulzSec at this point, congratulations, you've proven you're an idiot with the mentality of a 12 year old. Grow up.
Ditto here. Thanks
STATE OF ISRAEL ships were already on their way to Haiti before the so-called earthquake even occured, and French aid ships were 2nd to arrive if I remember correctly.
Something stinks like energy weapons, and wtf kind of excuse is an earthquake to allow foreigners in your land: if Mexico army arrived in California because of an earthquake then Californians would be up in arms and the Sheriffs would be hunting but instead you see Mexico army disguised as civilians arriving as a flood.
ZOMG!!!! Ponies!!!!
Thank you Thank you THANK YOU!!!!
General Relativity: Space-time tells matter where to go; Matter tells space-time what shape to be.
Hello how are you. I don’t think you’ve met me before but I am the tea lady here at Netvillage.com and thought I would invite you along for a cuppa. I have some interesting social networking recipes for you. Well, bye for now, The tea lady
The Pentagon does not classify hacking as an act of war. What they are doing is stating that hacking by a foreign power may constitute an act of war
I don't see what the difference may be.
What are the ultimate consequences of hacking? People will die? Or is it just a website that will be defaced? Some embarrassing emails that will be published?
If a foreign power really attacks the country, the consequences will be dead people and destroyed property. If that does not happen, if the only result is lost face by a few government officers, then it's definitely *NOT* an act of war, just a normal diplomatic snafu.
Has anyone else noticed the army geospatial and a bunch of other army core sites have been down for days with the very same error message from a previous hacking episode in Janurary?
I guess it is all fun and games until some resource you want to access is offline due to some stupid cracker.
Your need safe
Every one of them should be executed.
The problem becomes when the government hires citizens to do their bidding so as to avoid it coming from "government".
"Undefined" is math's polite way of saying it's illegal. (Think about it, semantically how can something not be defined?)
Division by Zero is the famous step in those classic 1=2 proofs. Basically, once you allow it in a sequence of operations everything afterward is pure nonsense.
My first Journal Entry ever, in 8 years! http://slashdot.org/journal/365947/aphelion-scifi-fantasy-horror-poetry-webzine
I'm guessing those accounts for which there is no provided passwords were those with 'strong passwords' that did not fall to a dictionary/brute force attack. Good for them! And that just shows that having a strong password is a good idea.
If anybody finds themselves wondering what Lulzsec, Anonymous or other are up to at any given moment, you can typically find out by going to pastebin.com and looking at the trending pastes there. You'll find information being passed bewteen people/groups as well as "press releases" like this one. Interesting stuff there.
http://pastebin.com/trends
You're just a bunch of kids who think you are hackers.
You see, a HACKER never EVER snoop around on the server he just got access to. He ONLY passes a message to the sysop telling how he got in and suggest some steps to plug that hole so that ARSEHOLES (like yourselves) using hacking techniques can't come in and wreck havoc.
I seriously wish media and ARSEHOLES like this "lulzsec" and "anonymous" could get their terminology right.
If you crack a game (or that thing making computers running really slowly from Redmond) you're not a hacker, but a CRACKER. WAY different.
If you use hacking techniques to gain access to a system only to snoop around and steal data of any sort (emails, documents, binaries, anything) then you're not a hacker, you're a "THIEVING ARSEHOLE"
If anyone is "offended" by the language I'm using: These are the correct terminologies that I learned back when "The Demo Scene" was huge on the Amiga, C=64, Atari, ZX-Spectrum et-al. Defined terminology doesn't change according to what media picks up on, and I think it's about time someone told them what the real deal is.
As of today, I've not heard of a single REAL hacking attempt for over 20 years. I've heard of idiots who thinks they're "cool" (but instead are just thieving/destructive arseholes) claim to be "hackers" but they're not.
I highly doubt that when the Pentagon declared cyberattacks an act of war, it was with groups like Lulzsec or Anonymous in mind. They're probably a little more concerned about a scenario in which a country like China or North Korea announces they have the U.S. power grid by the virtual short and curlies.
Does this mean Obama may send in attack forces to the neighborhood from which a cyber attack might have originated? Might he allow the nuclear option if the attack is considered harmful to the security of the remainder of the country? Watch out Texas or any other state that showed red in the last elections.
You can and should always question the government, businesses, etc. as to their intentions and challenge those that seem wrong... but in so doing, try not to stop short. It's a chess game, and if you analyze three moves then white's the bad guy but losing, five and black is winning and evil, six and it's a tie.
Where did it all go so wrong? The government of millions of employees in different branches - health care, education, military, law enforcement, become a single entity? That every single business was a spy agency or a godsend? That a security hole is a reason to subject millions of people playing games to identity theft? The lack of a security hole is a conspiracy against our rights?
What does everyone do that's so damn private? That's so important and worth safeguarding - like where you were last tuesday at 4pm? And when the hell did anyone whining about govnerment anti-terrorism travel to a different country or face a random bomb in their grocery store? Because I'll tell you what - I'd much rather a server parse my conversation about who won the game thurs than to have my sister killed in a jet crash. I'd rather see the world stabilize and talk than a group of fanatics, criminals, guns for hire, whatever, throw us into WW3. If that happens, the only consolation is that hopefully, the anti-govnerment, pro-big business, and anarchy for life fools will be some of the first to go. Not that we all won't anyways.
Your computers, your internet access... these are privileges built upon decades of human activity and interaction, a lot of it despicable, but guess what - it got you that little machine in front of you. Give a little thanks and try and consider the entirety of the game... fix what's wrong, but stop repeating all the bullshit that you're supposedly better than.