Slashdot Mirror

← Back to Stories (view on slashdot.org)

Hacker Group LulzSec Challenges FBI

Posted by Soulskill on from the getting-down-to-business dept.

Tiek00n writes "Hacker Group 'LulzSec' has gained some attention recently for their hacks of PBS and Sony. Their most recent target: FBI affiliate Infragard. The group claims, 'It has come to our unfortunate attention that NATO and our good friend Barrack Osama-Llama 24th-century Obama have recently upped the stakes with regard to hacking. They now treat hacking as an act of war. So, we just hacked an FBI affiliated website (Infragard, specifically the Atlanta chapter) and leaked its user base. We also took complete control over the site and defaced it...'"

52 of 308 comments (clear)

  1. Haha by Anonymous Coward · · Score: 2, Interesting

    Well done LulzSec. Exposing the hypocrisy in the US government... condemning hacking while funding it themselves.

    1. Re:Haha by MacTO · · Score: 3, Insightful

      How is that hypocrisy? If you define hacking as an attack on military or civilian infrastructure, then you're playing with the big boys. And those big boys get to define it as anything from a teenaged prank to a full out declaration of war -- based upon who attacked and what the consequences of those actions are. In a lot of respects it's no different than launching an assault by good old fashioned physical means.

      So if you're treating this as a joke, grow up. These are real actions with real consequences.

    2. Re:Haha by pipatron · · Score: 5, Insightful

      You haven't read 1984? The government need the excuse of a permanent war against an unspecified enemy in order to get away with most anything, making it easy to approve tax hikes, keeping operations secret in the name of state security, and keeping the citizens in place. A few decades ago you had the "Communists". Up until recently you had the "Terrorists". In a decade you'll have the "Hackers". Since they do not really exist in any tangible or organized way they can not be beaten and they are no real threat, but they are useful for scaring the population.

      --
      c++; /* this makes c bigger but returns the old value */
    3. Re:Haha by jhigh · · Score: 4, Informative

      I realize that asking people posting on Slashdot to RTFA is asking too much, but if half the people posting on this article understood basic English...well, there would be about half as many posts and LulzSec would look like the morons that they are.

      The Pentagon does not classify hacking as an act of war. What they are doing is stating that hacking by a foreign power may constitute an act of war. There is a world of difference, and understanding that difference sheds some light on just how dumb LulzSec really is for their behavior. Here's hoping they get the jail time that they deserve for acting like spoiled teenagers.

      --
      Social Engineering Expert: Because there is no patch for stupidity.
    4. Re:Haha by Original+Replica · · Score: 3, Insightful

      Sadly the service that LulzSec is providing is that of: "Now Feds have reason for totalitarian internet laws and broad ISP log searches."

      --
      We are all just people.
    5. Re:Haha by IICV · · Score: 3, Insightful

      A few decades ago you had the "Communists". Up until recently you had the "Terrorists". In a decade you'll have the "Hackers". Since they do not really exist in any tangible or organized way they can not be beaten and they are no real threat, but they are useful for scaring the population.

      Ah, but see - the difference between "Communists", "Terrorists" and "Hackers" is that the first two didn't really speak English, and they didn't ridicule their targets. If, instead of flying planes into the WTC on 9/11, the terrorists had just made the airplanes do loop-de-loops to show how useless airline security was, you can bet that our response would have been significantly different.

      The outcome of ridicule, which seems to be the future, is much different than the outcome of direct confrontation.

    6. Re:Haha by DarkOx · · Score: 2

      Yes, but big government infringes peoples rights each and every day, they just might not happen to be infringing on yours today. The thing is from you post I can tell you are the type that will sit by and say nothing while I get shipped down the river without cause or justice on the side of those taking such action.

      They only way to get you to stand up and do the VERY LEAST YOU COULD and VOTE to throw the bums out, is cause a little of the grief to come your way. The larger the part of the population the government can be teased into abusing at the same time, the great HOPE there is for REAL CHANGE.

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
  2. Clever by asto21 · · Score: 3, Interesting

    Take a site down first and then make sure it stays down by slashdotting it.

  3. Thay also defaced Slashdot by Anonymous Coward · · Score: 5, Informative

    Or is Slashdot slashdotted? These 503 errors have been happening for a couple of days now.

    1. Re:Thay also defaced Slashdot by zach_the_lizard · · Score: 2

      They seem to happen most on my iPhone, and only on certain articles. Very annoying.

      --
      SSC
    2. Re:Thay also defaced Slashdot by Anonymous Coward · · Score: 3, Funny

      But it gives more of us a chance to see the "Guru Meditation" gag. That's worth it.

    3. Re:Thay also defaced Slashdot by Qzukk · · Score: 5, Funny

      Slashdot has so many gurus meditating, the entire damn datacenter had better be levitating a mile off the ground.

      --
      If I have been able to see further than others, it is because I bought a pair of binoculars.
    4. Re:Thay also defaced Slashdot by NeutronCowboy · · Score: 3, Informative

      That's noscript blocking addthis.com.

      --
      Those who can, do. Those who can't, sue.
  4. Act of war. by Anonymous Coward · · Score: 4, Insightful

    So it's clear from the emails leaked that the US of A just started a war with Libya.

    1. Re:Act of war. by Anonymous Coward · · Score: 2, Informative

      What do you mean, "started"? USA has been bombing Libya for weeks already.

    2. Re:Act of war. by Anonymous Coward · · Score: 2, Insightful

      What do you mean, "started"? USA has been bombing Libya for weeks already.

      You don't honestly expect slashbots to be aware of what's happening in the world around them, do you? And besides, as everyone knows, they're NEVER wrong...

  5. Clear acts of War by Khyber · · Score: 3, Insightful

    I wonder if the people of the USA have any legal recourse to arrest our own government for illegal acts of war since the evidence is out in the open, not to mention violating human rights by attempting to maintain slave labor conditions (The recent Levi Strauss/Haiti revelation) for profit.

    Oh, and shall we drop on charges of illegal renditions of other countries leaders (how do you think Haiti happened?)

    --
    Still waiting on Serviscope_minor to wake up to fucking reality and realize that Jessica Price isn't going to fuck him.
    1. Re:Clear acts of War by erroneus · · Score: 2, Insightful

      There are measures which can lead to a recall of government leaders. Problem is, you need to organize and the moment you do, somehow you end up on no-fly and other lists and if you wish to "legally" assemble into a group, you have to ask permission.

    2. Re:Clear acts of War by Warmlight · · Score: 5, Informative
      It's not law but the Declaration of Independence says:

      ...that whenever any Form of Government becomes destructive of these ends, it is the Right of the People to alter or to abolish it, and to institute new Government, laying its foundation on such principles and organizing its powers in such form, as to them shall seem most likely to effect their Safety and Happiness. Prudence....

      Again, it's not law but it is one of the documents on which our country is based.

    3. Re:Clear acts of War by TubeSteak · · Score: 5, Informative

      You, sir, are a coward. Show me an example of someone winding up on a no-fly list as a result of peaceable assembly. Yeah, I didn't think you had anything.

      http://balkin.blogspot.com/2007/04/another-enemy-of-people.html

      "Have you been in any peace marches? We ban a lot of people from flying because of that." I explained that I had not so marched but had, in September, 2006, given a lecture at Princeton, televised and put on the Web, highly critical of George Bush for his many violations of the Constitution. "That'll do it," the [American Airlines clerk] said. "

      That's just the first result off of google.
      If you don't think people aren't being put on the no-fly list for asserting their right to free speech and to publicly assemble, you haven't been paying attention.

      --
      [Fuck Beta]
      o0t!
    4. Re:Clear acts of War by erroneus · · Score: 2

      See what the guy wrote before I did. Also see a lot more. I'm no coward. Denial is the first act of a coward. And when denial is impossible, it will be "protecting one's self" by not getting involved. And when everyone else is gone, there will be no one left to protect you.

      I'm actually surprised to hear anyone respond as you did. Denial simply isn't possible any longer. At this stage, denial just makes you look like a fool.

    5. Re:Clear acts of War by erroneus · · Score: 2

      Wish I had remembered to quote this:

      "A MAN WITH A CONVICTION is a hard man to change. Tell him you disagree and he turns away. Show him facts or figures and he questions your sources. Appeal to logic and he fails to see your point." So wrote the celebrated Stanford University psychologist Leon Festinger

      This has been an established fact of human behavior for ages. The only thing different about your denial is that it is YOUR denial and not someone else's. In this case, you are at the "questioning the sources" phase of denial. And when you can't deny it any longer, you will simply fail to see the point... in this case, you will simply tell yourself you are "staying out of trouble."

      These situations are like infections. Sometimes an infection will go away on its own because the immune system will do its job. But sometimes the infection attacks the immune system and it grows out of control. Our county's immune system is our constitution. It is our constitution which is under attack. And without it, we all have much to fear.

  6. Amusing signature by Anonymous Coward · · Score: 3, Insightful

    "Now we are all sons of bitches , Lulz Security". I approve of the Manhattan project reference.

  7. Bring it down! Bring it all down! by Anonymous Coward · · Score: 3, Interesting

    We see with Apple and Google phones tracking people, SSD not being securely erased, police with gadgets that rip all data off cell phones, back doors in routers, NSA rooms on the AT&T backbone servers, printers with secret yellow codes, carriers recording GPS coordinates 8 times a hour, TOMTOM and ONStar snitching the list goes on and on... We see EXACTLY what the jack booted government thugs are making the industry do with products we need to use, grossly invading the rights of everyone in the process and under the guise of trying to catch a few bad guys. Enough is ENOUGH!

    1. Re:Bring it down! Bring it all down! by Bloodwine77 · · Score: 3, Insightful

      Don't put that all on the shoulders of the government. The corporations want all of our information and metrics as well, so that they can better tailor their advertising, marketing, and sales. Not to mention that information is very, very valuable and people need to realize that in many cases we're the products being sold. Our information is the product.

    2. Re:Bring it down! Bring it all down! by TubeSteak · · Score: 3, Insightful

      Don't put that all on the shoulders of the government. The corporations want all of our information and metrics as well, so that they can better tailor their advertising, marketing, and sales.

      The government, under sealed subpoenas, requests that information from the corporations.
      Then argues in court that if those dockets were unsealed, the corporations might feel pressure to resist government requests for information.

      So, while the corporations aren't entirely blameless for giving up the goods without a fight, the government is actively aggressing against its people and refusing us the ability to fight back.

      --
      [Fuck Beta]
      o0t!
    3. Re:Bring it down! Bring it all down! by hvm2hvm · · Score: 2

      so that they can better tailor their advertising, marketing, and sales

      That's the bullshit they tell us to make it seem harmless but they want power just the same the government wants it. I'm pretty sure, the big companies are doing more with the information than just marketing.

      --
      ics
  8. Just a bully by Prosthetic_Lips · · Score: 4, Interesting

    LulzSec just showed their hand that they are operating like a schoolyard bully. "Do what we want / act like we want, or we'll hack you."

    You might think they are standing up to a bully (USA), but taking down 3 different Sony companies smells of a bully, kicking them while they are down.

    1. Re:Just a bully by Anonymous Coward · · Score: 4, Insightful

      Well of course. That's what these groups do (LulzSec, Anonymous, etc.). They aren't heroic crusaders against "the man". They are immature idiots who happen to know how to use hacking tools (and I'm sure some of them are experts). It doesn't make them people to admire or emulate. Hopefully these tools will get caught.

    2. Re:Just a bully by Elbereth · · Score: 4, Interesting

      Worse than that, I'd contend that the intention is not to embarrass Sony, but rather to attack Sony's customers. I hate to use the T word, but this clearly is dictionary-definition terrorism: attacking a soft target in order to bully them into falling in line with your demands. Sony's customers are seen as the enemy, as much as Sony itself is, because they provide positive reinforcement to Sony (in the form of revenue), while breaking any attempts to boycott Sony. By adding a negative consequence to being Sony's customer (privacy invasions), they hope to influence the customers' actions.

      Obviously, they're not setting off bombs in crowded cities or crashing planes into skyscrapers. They're just a bunch of stupid kids inconveniencing people. That doesn't change what word the dictionary uses to define such actions, however...

      Admittedly, I've spent so many years trolling Slashdot, it's difficult for me to switch out of "troll" mode and make a legitimate point without resorting to any trolling, but this time, I'm honestly just sayin'. And, that, kids is the danger of a lifetime of trolling: eventually you can't even tell when you're trolling or not.

    3. Re:Just a bully by Anonymous Coward · · Score: 3, Insightful

      You're right, they are bullying Sony. However, as some might attest, once someone stands up to the bully, the bully generally chills out, or shows its true colors. Sony was a bully initially-- and hackers have reduced them. Sony, however, has not and will not learn the error of its ways. Call it my opinion, but if, after the first attack, Sony got all its network and use back, do you really think they'd change? Based on what we've seen in the past, they'd become only more draconian. Sony is more like a gang member.

      You mess with Sony, they lean on government (the gang.) The US then starts subduing the neighborhood by force, and threat, and (pick your rules, restrictions, and/or persecution). So the US wins and the company is finally restored-- do you really expect them to be kinder? Gentler? More understanding?

      I don't like LulzSec, personally. I don't like what they're dong to everyone else-- all we end users. It tells me just what they think of 'ordinary people', but, is that unique for a hacker? Break the law and get around security enough, and you feel you have more power than most-- not condoning their activities, just explaining it. The government doesn't think they have to abide by their own laws either. How is that much different? Rather than posting user info on a website, they store it all in searchable databases for future use. Not much better, IMHO.

      Personally, as one of those 'end user' people, I could care less about this action. The USA screws me. Sony screws me. Now LulzSec is screwing me. However, when they all start trying to screw each other, I don't get screwed so often, or so hard. Most of us know how easy it is to get info about people over the internet. So long as I'm online, I have two considerations-- do I want the government snooping in my stuff, or a group of hackers? One gives a shit about me and all my actions and will bring it up against me at the next available opportunity. The other doesn't, but might. I'd rather the government leave the internet entirely. They won't. Therefore, I'd rather have two, or three "gangs" in control, or fighting for control. While they're so busy fighting each other, I can take a moment to go fishing, or post on facebook (don't actually have one, but), or buy some bleach without the tag that I might use it for meth or a bomb or something other than making my socks white. So in this case, I'll root for LulzSec while I go about my normal life. In fact, I think I will go fishing.

    4. Re:Just a bully by Kernel+Krumpit · · Score: 2

      Well, I think they are heroic crusaders and I do admire them. But then again I always like Robin Hood too.

      --
      May the lies we live by make us strong, healthy, happy and wise - Kurt Vonnegut.
    5. Re:Just a bully by Anonymous Coward · · Score: 2, Insightful

      I hate to use the T word, but this clearly is dictionary-definition terrorism: attacking a soft target in order to bully them into falling in line with your demands.

      What is the reported damage to Sony customers? So what if their account details are posted? Every credit union, every other large company that they do business with, every government agency that they've ever interacted with on a federal, state, and local level, every intelligence agency that vacuums up mind-boggling amounts of internet data a day, every Facebook friend, etc. can find that info rather easily. There's literally hundreds, if not thousands, of people that can find out that info about Sony customers, yet no one seems to worry about that. Yet when the hoi-poloi can see it (if they're at all interested), suddenly it's OMG!!1 TERRRORISTS!!!!

      Secondly, what demands has Lulzsec made?

    6. Re:Just a bully by 1s44c · · Score: 2

      LulzSec just showed their hand that they are operating like a schoolyard bully. "Do what we want / act like we want, or we'll hack you."

      You might think they are standing up to a bully (USA), but taking down 3 different Sony companies smells of a bully, kicking them while they are down.

      Organizations that don't protect against SQL injection or don't use decent authentication are going to get cracked by someone sooner or later. Lulzsec may be publicly embarrassing various groups but they don't seem to be involved in any crime above and beyond that. You call them bullies but what if credit card scammers got hold of Sony's data and quietly started robbing everyone involved? The situation would be way more messy.

    7. Re:Just a bully by 1s44c · · Score: 2

      Well of course. That's what these groups do (LulzSec, Anonymous, etc.). They aren't heroic crusaders against "the man". They are immature idiots who happen to know how to use hacking tools (and I'm sure some of them are experts). It doesn't make them people to admire or emulate. Hopefully these tools will get caught.

      Yes, because once these idiots are locked up we can feel safe as only proper criminals will steal our personal data from careless multinationals.

      The real problem is that multinationals and governments care about compliance with dumb regulations and not about security. They therefore suck big time at security.

    8. Re:Just a bully by sensei+moreh · · Score: 2

      Personally, I have no anonymity.

      Sure you do - you posted as an AC

      --
      Geology - it's not rocket science; it's rock science
    9. Re:Just a bully by Dhalka226 · · Score: 4, Insightful

      Yaknow, a lot of people can--and did--defend the Sony hacks. Some could probably defend the "FBI" hack, though when I hear words like "FBI-affiliated" I just cringe at what they're hiding behind that term.

      But how do you defend hacking PBS? These people are obviously just scumbags with too much time on their hands, and articles like this are exactly what they want. Ignore them. They're not worth the attention.

    10. Re:Just a bully by Idbar · · Score: 5, Insightful

      For what is worth. As I recall correctly from my youth, in a battle between bullies, kicking them while they are down seems like a right approach. You shouldn't give them the chance to stand back up, because you know they will be really pissed.

    11. Re:Just a bully by aaaaaaargh! · · Score: 2

      They are immature idiots who happen to know how to use hacking tools (and I'm sure some of them are experts). It doesn't make them people to admire or emulate.

      I admire them. Let's hope that guys like you will never have reasons to admire them. (If they do their job right, you will never admire them. Let's cross thumbs it stays that way.)

  9. Re:These guys are beyond stupid. by erroneus · · Score: 3, Insightful

    Those guys are faceless and nameless. We won't know who disappeared when they disappear. We will just know they disappeared.

  10. Permission... by Andy+Smith · · Score: 2

    ...to find this all frickin' hilarious?

    Wildly entertaining as a spectator.

  11. It's only an act of war if done by a foreign power by alexam · · Score: 4, Insightful

    I mean, right?

    Let's say a citizen, or many citizens, are shot. If it's done by another US citizen, it's murder, a crime, and not an 'act of war.' If it's done by some organization, it's homebrew terrorism. If it's done by another country, it's an act of war. That doesn't seem like a wholly unreasonable stance to hold, although it certainly can be debated, I guess.

    I don't know, are these people going for the "That's a ridiculous stance on hacking, what are you gonna do, declare war on US?? How ludicrous! See, hacking is not an act of war" angle to this whole thing?

    If so.....lulz.

  12. This is bound to end well... by Zero1za · · Score: 5, Funny

    (and by well, I mean with prison sex).

  13. Anonymous Coward Comment Ratio by OnTheEdge · · Score: 3, Insightful

    Funny how the ratio of Anonymous Coward comments to logged in user comments seems to have spiked on this thread.

  14. Re:These guys are beyond stupid. by westlake · · Score: 3, Insightful

    As long as these guys don't brag about it openly in pubs, I bet many will never get caught.

    You pull at the loose threads until the whole fabric begins to unravel.

    I mean, c'mon - they couldn't find Osama Bin Laden when he was living in the same house for many years - what makes you think they'll magically be able to find hackers?

    The hacker is an adolescent braggart who thinks he is bullet-proof.

    Osama's father made billions on construction projects for the Saudi royal family. Osama's share was worth $100-300 million. That bought a lot of protection these hackers do not have.

    But Osama is still dead.

  15. Really, no salt? by definate · · Score: 4, Interesting

    So, they didn't even salt the md5 hashes. How lazy does this "security" firm want to be?

    Also, how simple do some of these passwords want to be? LOL "infragard26j" are you kidding me? Come on IBM, lift your game!

    Here's a copy of the exposed file on PasteBin

    I've noticed that the "cracking" method of choice was just "see if these are known values in public rainbow tables". Which, many of them were. Huzzah!

    Also, I thought that all md5's had been cracked before, however it seems not so. So, I decided to calculate how many gb such a table would AT LEAST have to be. Well, I was quite surprised. Unless there's collisions or my math is fucked, that's quite a lot!

    Seems Unveilance, the company which had its CEO's private emails leaked, has responded and sort of, also authenticated the hack too. Unveillance Official Statement

    --
    This is my footer. There are many like it, but this one is mine.
    1. Re:Really, no salt? by Seth024 · · Score: 2

      Your math is correct if you want to know how many entries it would take to cover the entire hash space.
      However more advanced tables don't store all entries. (rainbow tables)

      In short: they repeatedly hash a word and turn the hash into another word. After many of these iterations they store the word they started with and the word they end up with. If you want to look up a hash, repeatedly turn it into a word and hash it until you find a word that's in the table. They you can start off at the starting word of that chain and continue until you end up at the password you were looking for. http://en.wikipedia.org/wiki/Rainbow_table#Precomputed_hash_chains

      It saves you a ton of storage space.

  16. Re:working by the_other_chewey · · Score: 5, Informative

    This rule in Adblock Plus takes care of it:

    slashdot.org##.busy.genericspinner.hide

  17. To all those who are praising Lulz ... by Jerry · · Score: 2

    Are you positive that Lulz is not a government/theocratic cyber warfare unit operating out of Europe or the Mid-East or China or Cuba or Venezuela? In other words, people who have ponies in the race? How can you be sure?

    Or, is it your attitude that while the above mentioned countries can and do have cyber warfare units it is wrong for the USA to have its own unit too?

    One never reads about these "hackers" breaking into Russian or Chinese government websites and then releasing documents they steal. Why is that? Could it be that they know that they are not as "invisible" as they brag to be, and that if they did attack those sites it wouldn't be long before they were sleeping with the reporters whom Putin didn't like, or they'd suddenly wake up in a Chinese or Iranian prison?

    And, to the idiot who claimed that "hacking never hurt anyone", talk to the people who were put in harms way by WikiLeaks sloppy editing of stolen documents containing the names of people.

    The RICO and PATRIOT Acts, along with the TSA, have done enough damage to citizens of the USA without having hackers further the harm. It's time for rational people to replace the Rude-Goldberg security arrangements created by the DHS. But, let's imagine that Lulz and WikiLeaks are successful in creating a citizen uproar that results in the activities of USA espionage agencies being severely, although irrationally, curtailed. When those agencies can no longer prevent the smuggling of a disassembled Pakistani or Iranian nuclear bomb into the country and, say, Denver, CO disappears in a mushroom cloud, will you be happen then?

    --

    Running with Linux for over 20 years!

  18. Re:It's only an act of war if done by a foreign po by elashish14 · · Score: 2

    Well the US government managed to declare a war on terror which is essentially a war on its own citizens given how they've starting tracking them, invading their privacy, and essentially stripping them of any of their human rights (rights provided by the constitution or otherwise). So they've already got their internal war. Not much more for them to do there, all they've got left to do is the same thing for all other nations which they haven't done it to.

    --
    I have left slashdot and am now on Soylent News. FUCK YOU DICE.
  19. Re:How will this work... by theshowmecanuck · · Score: 2

    There is a thought that if you have a very large army you have to use it on external targets every now and then. Otherwise it will get bored and start flexing internally. Kind of like banana republics that have extensive (for their size) militaries but aren't quite big enough to safely fight anyone around them. Eventually they turn on themselves and the generals become presidents for life. Given that America spends more on their military than the rest of the world combined, they need to continually be fighting, or else the next white house will be the pentagon. The other option is to stop spending so much on the military so they can afford to take care of their own people without worrying about the budget ceiling all the time.

    --
    -- I ignore anonymous replies to my comments and postings.
  20. govt secrecy has killed more people than terrorism by decora · · Score: 3, Insightful

    the 20th century should have been the end of legitimate arguments for overreaching state power, govrment secrecy, and police states, with (at least) 50 million people directly killed in concentration & labor camps for the benefit of a bureaucracy.

    compare that to a few thousand people killed by terrorism, it doesnt even begin to compare. we should be locking up anyone who even approaches moving in a dictator-ship like direction, because the threat of terrorism is just about as dangerous as the threat of perscription medication or tornados, while the threat of overreaching government is as real as the bricks at auschwitz.

    information about bio, chem, and nuke weapons is not rocket science. building a nuclear bomb is not rocket science. its nuclear science and its not that hard. the only hard part is gathering enough fissile material.

    but governments are paying more attention to frisking babies than to keeping tight controls on uranium mines.

    there was a whole warehouse full of yellowcake sitting in Iraq before the war - the us barely even tried to secure it.