Slashdot Mirror
LulzSec Target the Sun After Phone Hacking Scandal
nk497 writes "LulzSec have come out of retirement to target Rupert Murdoch's News International, hacking the website of The Sun, redirecting it first to a spoofed page reporting his death and then to Lulz's Twitter feed. 'The Sun's homepage now redirects to the Murdoch death story on the recently-owned New Times website,' the hackers said via Twitter. 'Can you spell success, gentlemen?' The hackers also started to post email addresses and passwords they claimed were from Sun staff, and said to have accessed a mail server at now-defunct News of the World."
"Since the beginning of time, man has yearned to destroy the Sun."
Breakfast served all day!
Isn't this funny.
Hacking hackers.
So, because they did something ethically wrong and against the law it's OK to do the same to them? I thought we had gotten beyond the whole "eye for an eye" thing.
Beware of Sales Reps bearing gifts.
AFAICT every single NI UK based website is currently offline.
Is it wrong that I'm amused to see this?
It's not like government was going to do anything to the corporation other than a slap-on-the-wrist fine that's certain to be less than the profits made by the act. That they may throw low-level employees under the bus doesn't change this. At least someone somewhere is trying to make sure that corporate malfeasance actually does have some kind of consequence.
I have always believed that a properly-functioning government, not owned by monied interests and willing to take effective and severe action against misbehaving corporations and their executives would have prevented both Anonymous and LulzSec from ever getting started. As I see it, they are only stepping in where the government has grotesquely failed. Everything that is bad about vigilanteism is caused by failing governments.
It is a miracle that curiosity survives formal education. - Einstein
It's not like the Sun ever posts anything remotely approaching actual news or something with a factual grounding, so what difference does it make if the homepage redirects to the actual Sun homepage or a spoof? Neither is actually news.
Yes it was very bad of the News of the World to hack these people's phones/voicemail. But how come we haven't heard anyone go after the cell phone providers for a shitty security setup. Sure the people's passwords might have been easy, but I remember when that guy hacked Paris Hilton's T-Mobile account. Everyone was slagging the shit out of T-Mobile as well as the hacker. And if the people who's accounts were violated because of poor passwords, why hasn't anyone commented in the news about this either? Are these points not sensationalistic for them?
-- I ignore anonymous replies to my comments and postings.
Guess they haven't figured out how to retire without working. It's a common problem from what I've heard. :)
I do not fail; I succeed at finding out what does not work.
Link
News Corp was already pushing this storey as if they are victims, I see no good from actually giving them something to claim victimisation over.
They got all the news international emails as well, to be posted tomorrow.
That includes wade and co.
People, this could be massive ^^
I don't know about 'Success', but I can spell 'Compromised and Contaminated Evidence' what with this lot and our idiot MPs crashing around it will be amazing if anyone gets prosecuted for this sordid mess.
The name of the newspaper is The Sun. For a website that capitalizes "the" in headlines as often as not, you'd think they could at least get it right the one time that it SHOULD be capitalized.
They are not targeting "the Sun". They are targeting The Sun. Bonus points if you can figure out how to italicize it in the headline. HTML isn't that hard.
I don't see hacking, I only noticed the domain won't resolve. So its back to ddos again, as always. Lame; guess the only "inteligence" here is that they seem to have targeted the DNS server.
Totally not impressed here.
Karma is a bitch
When the only tool you have is a hammer, every problem looks like a nail
http://www.youtube.com/watch?v=l1P6KUyOhBc
And why they never buy the Sun:
http://news.bbc.co.uk/2/hi/uk_news/magazine/4258455.stm
Basically the Sun isn't even fit to line a birdcage.
--
BMO
I don't see hacking, I only noticed the domain won't resolve. So its back to ddos again, as always. Lame; guess the only "inteligence" here is that they seem to have targeted the DNS server.
Totally not impressed here.
That's only because NI went scorched earth and took down all their NI UK based websites. There are screenshots and videos floating about the net
publicity-addicted "hackers" continue to kick over anthills and declare themselves the hellspawn of king kong and godzilla
still waiting for these internet tough guys to grow a pair and hack someone worth bragging about
NSA: lol come at us bro ... hey look some fifth-string military contractor left a mail server unsecured!
AntiSec:
What if Lulz-sec was The Sun and its just a convenient way to make themselves look like the victims and continue to hack into more things for "news" stories.
I thought I took my medication today.
It's worse than a poor choice of password. UK mobile carriers used to use a default 4 digit PIN that could be used to access your voicemail from another line. Most people didn't bother changing it from the default, so all you had to do was get directed to their voicemail (by simultaneously calling their number from another phone) and then enter the PIN.
Because the people reporting on the stories know nothing of security...
they are cyber criminals . Do you know the difference?
This could not have happened to a nicer newspaper. I know it probably isn't the Lulz doing the "hack" (more than likely some spin-off of the Socialist Worker Party, i.e. one of them with some sort of knowledge and half a brain), but I do really applaud the effort. Fair play old chap(ess).
The hackers of Paris Hilton's phone weren't being employed by a massive multinational corporation to hack the phones. The people who did hack the phones saw jail time - something that will never happen to anyone who actually ordered the crimes to be committed in the case of News Corp. Until we start instituting nuremburg style trials for large corporations where there are serious consequences for malfeasance, this is going to get worse. At least in China the executives get executed when this shit happens.
News International I understand. The Sun, too, I guess. But why in the name of all that is holy would they take down Page 3?
Cheers,
Dave
They that can give up essential liberty to obtain a little temporary safety deserve neither safety nor liberty.
Ben
No.
Murdoch's lawyer: If it please the court, I would now like to present evidence that a group calling itself Lulzsec hacked into computers belonging to my client and altered them, thus rendering police evidence entirely unreliable.
The Queen: Case dismissed. What's for lunch?
ISTR Paris Hilton's phone's password turned out to be just the name of her dog, or something equally stupid ... which wouldn't require hacking, just a lucky guess.
As most of us here understand, mobile voicemail hacking just requires brute-forcing a PIN - 4 digits in the case of UK cellphones ... or just 2 digits in the case of my home ansafone :-)
So there isn't much security on a cellphone's voicemail to criticise in the first place.
If you don't pray in my school, I won't think in your church.
Maybe News International threw in the towel and pulled the plug on them.
The Lulz is dead, long live the Louise
Sky News is there
Apparently
http://www.youtube.com/watch?v=DG7IURgryjA
For non-UK readers, Sky News is part of News International's UK TV operation.
The Fox News website is still operational. Please advise.
until it happens to you. Righteous lawlessness stinks out loud.
I believe most (if not all?) of the "hacking" was via default voicemail PINs that were never changed. Even easier!
CheShA: Manchester Breakcore / Drill and Bass Yes I'm a s
I think that this time News Corp will be held responsible. No need for vigilante justice. http://technoflak.blogspot.com/2011/07/fall-of-house-of-hubris.html
the means determine the ends. Vigilante justice is not the path to the rule of law.
We will expose these hackers for the terrible people they are. Hacking to expose the truth...who do they think they are?
Murdoch is a pirate http://it.slashdot.org/story/08/03/31/0145241/Murdochs-Hacker-Speaks-Out
Hopefully there was nothing on those servers that could have help prosecute a case against them. I doubt any court would let the evidence in, with a record of unauthorized intrusions that may or may not have made changes. Certainly it would be a bitch for the prosecution to try.
It's supposed to be completely automatic, but actually you have to press this button.
the difference is your post makes you look like a dick.
help me fix this "Terrible" karma, please!
Way to go boys, I'm proud of ya (seriously!)
But I sincerely hope you covered your tracks, and covered 'em well, because the guy who blew the lid off this whole thing was found dead in his apartment today in "unexplained but not suspicious" circumstances (seriously, WTF?)
http://www.bbc.co.uk/news/uk-14194623
in the US would break down into perhaps the following.
NEWS of the World
actually hurting people
harassment
infliction of emotional distress
invasion of privacy
phone phreaks / lulzsec
tresspassing
tortuous interference
harassment
public nuisance
now, , , then there are the 'evil hacker laws'.
"doing naughty things on computers"
Computer Fraud and Abuse Act (same law they tried to use on the Myspace suicide woman)
(also coincidentally the same law being used against Bradley Manning, Wikileaks, NSA Whistleblower Thomas Drake, etc).
Various state laws, like the California Comprehensive Computer Crimes Whatsitcalled. (Which Facebook has used to sue people who ... crawl facebook)
so actually the laws are completely different depending. and IMHO most of the 'hacking laws' are unconstitutionally vague and unnecessary
The Whistleblower on NotW, who was saying that the practice was a lot deeper than previously thought "was" just found dead.
Legitimate people do not fuck with Rupert Murdoch.
http://www.bbc.co.uk/news/uk-14194623
"The hackers also started to post email addresses and passwords they claimed were from Sun staff"
Because a bunch of underlings and hourly wage earns are CLEARLY who you should be targeting, right? Right? FUCKING ARREST THESE DOUCHES (but first arrest and anally rape Rupert Murdoch too, he deserves it, just not from THESE cretins).
From the headline, I was expecting to read "This morning's unprecedented solar eclipse is no cause for alarm."
And that would have been followed by some fiend ordering, "Dispatch War Rocket Ajax, to bring back their bodies."
This space unintentionally left blank.
The guy is retarded, and thus less capable of making or being responsible for decisions. Since you seem to be unable to grasp why it would be a bad idea to execute retarded people, I think the world would be better off without you. Society deserves to rid itself of people like you.
Looks more like employees in his company are pirates, maybe possibly. Not him. Gee this is the pretty a-typical left wing 'guilt by association' thing that they go on about.
Om, nomnomnom...
Hmmm, apparently someone actually did die, sadly it wasn't Murdoch. http://www.usatoday.com/money/media/2011-07-18-murdoch_n.htm
Mysteries aplenty.
LulzSec Target the Sun...
...but not in quite the same way as did Disaster Area
Just a historical reminder. Both the Ku Klux Klan and the Nazis (before they came to power) used the same language for taking the law into their own hands. The only thing that keeps similar groups from using the same tactics to terrorize their targets and even, possibly, gain power is the rule of law. Yes, this time, the target of the vigilantes is a reprehensible dirt bag. Just remember that not all vigilantes are the good guys.
Cheers,
Dave
They that can give up essential liberty to obtain a little temporary safety deserve neither safety nor liberty.
Ben
What if the data they got their hands on was somebody's personal blackmail stash, or maybe even the files containing lists of who was on the take?
People who are into tapping phones for years don't just stop there. This should be fun.
Possibilites are endless... /popcorn
Heh... I woudn't mind if someone hacked oracle and found these docs for me :P nobody cares enough to go through the legalese to release them. Kidding aside it wouldn't be proper and probably no SO would accept the code :-/ .
.... sigh.... I guess this is what turns some people to doing luzsec things they can't have any fun with whatever interests them so they join a "cause" ... not that I would hack anyone I just don't have any interest in that sort of hacking though no doubt my interesting old hardware and reverse engineering will lead to at least some understanding of that sort of things.
Hey I may not get my
If you are a Sun/Oracle engineer please, get me these docs! I woudn't even mind being under NDA myself as long as I could write BSD/GPL drivers for the hardware. Heh NDA on 20 year old hardware would be weird but whatever. http://wikis.sun.com/display/FOSSdocs/Home
Leo Hardware Reference Manual (800-7216-10; June 1993)
Leo Theory of Operation (800-7220-10; June 1993)
I also wouldn't mind having Fujitsu AG-10E docs and binary drivers for both
^^
Nuremberg style ex post facto legislation would indeed be helpful in this case. They probably won't be able to prove that Brooks or Murdock were directly involved, so they could make it illegal to be the head of an organisation comitting such action.
Hackers - Cyber criminals = The difference (?)
"Men will never be free until the last king is strangled with the entrails of the last priest." - Denis Diderot.
"Set the controls for the heart of the Sun ..."
Don't go to a brothel if you want to buy broth
NotW's servers are currently in police custody, which is why they had to stop publication. The NotW building was a crime scene. As the servers are currently wrapped in plastic waiting for the police to extract data from the hard drives, Lulzsec may have trouble hacking them.
From scarped cliff or quarried stone she cries "A thousand types are gone, I care for nothing, no not one."
They've just given the News of the World staff a get out of jail card.
Now they can claim anything the police find in their emails was placed there by 'hackers'.
Makes you wonder if these morons were being paid by Murdoch to cover up for him.
Bad analogies are like waxing a monkey with a rainbow.
I think the Lulz really got themselves into trouble this time. That tycoon is so evil, so rich and so influential and has connections with such shady circles, the anarcho-kids are probably lucky if they wake up tomorrow to find a severed horse-head in their beds, rather then their own...
Or maybe Murdoch will simply print press photos of them masturbating to furry porn comics or publish chat logs that illustrate the miserable sexual deprivation and abberration of the Anon-Lulz-kind. His private investigator minions can find out nasty facts about the past of your sisters, parents, he can find out if you have a weird shameful fetish. He can ruin your life beyond recognition, he can drive you to commit suicide. Did you ever abuse an animal as a kid? He will find out about it and publish a story of that.
We have this concept of due process and innocent until proven guilty.
The News of The World (and the police apparently corrupted by them and various politicians) are being investigated.
This silly prank has just made it much harder to obtain a conviction as the NotW staff can now claim any evidence in the mail servers has been compromised by hackers (assuming Lulzsec's claims are even true of course).
So unless you believe the authorities shoud just throw everyone in jail without bothering with such formalities as evidence and due process then what exactly is the excuse you are making for these idiots taking the law into their own hands?
Bad analogies are like waxing a monkey with a rainbow.
How does somebody's blog count as a citation? Has Murdock been jailed? Fox news is still on the air, you don't think all the other arms of Murdoch's empire are still doing the same shit the Sun did for years while authorities looked the other way?
My only beef with LulSec is they didn't take down Fox News and other Murdoch outlets.
Free Martian Whores!
Like, for example, their propaganda wing the Wall Street Journal?
from guardian.co.uk
Monday night's hack of the Sun occurred because one of the hackers found a weakness in a "retired" server for the News International "microsites" – used for small or unimportant stories – running Sun's Solaris operating system.
The most likely candidate for that hack – which would use the weakness discovered in 2009 – is the "mailback" page at http://www.new-times.co.uk/cgi-bin/newtimesmailback, which on Tuesday morning had been deactivated, along with the whole of the new-times site.
The server hosted the outdated "new-times.co.uk" site put up when the Times was building its paywall.
The hacker used that and then ran a "local file inclusion" program to gain access to the server – meaning they had extensive control over it.
That then gave them access across large parts of the News International network, possibly including the archived emails, and to the Sun's "content management system" (CMS) – which formats news onto pages. That will have included the code for the "breaking news" element of the Sun's main webpage; changing the entire content on the page would be too obvious.
By including a line of Javascript in the "breaking news" element, the hackers were able to ensure that anyone visiting the Sun's home page would, as the ticker was automatically refreshed, they would be redirected to anywhere that the hackers chose.
Initially they made it redirect to a fake page they had created at new-times.co.uk/sun which attempted to look and read like a Sun story claiming that Rupert Murdoch had been found dead. That page used a template of another story that first appeared on 14 July, suggesting that the hackers either grabbed an archived story or have had access since then.
After the team at News International tried to regain control, the hackers then redirected the main News International page to the Twitter page for LulzSec.
But the problems for the News International team aren't over. A number of email addresses and passwords were being tweeted last night on various feeds – implying that the hackers may have gained access to the email archive and be preparing to release it. If that happens, the effects could be titanic.
one engages in crime (cyber criminals), the other is a generic term for a very skillful technology enthusiast. They are completely different.
I love to slaughter the english language.
What's the word for someone who ignores all common usage of a word and for no apparent reason desperately clings to a definition for it that's been outdated for 20 years?
The WSJ's no valid citation, either, especially an editorial.
Free Martian Whores!
The hackers also started to post email addresses and passwords they claimed were from Sun staff, and said to have accessed a mail server at now-defunct News of the World." So LulzSec have introduced reasonable doubt to a massive judicial enquiry? Using this information the NotW lawyers can play down any email discovered as the work of these hackers. Rupert Murdock, rather than being hurt by these action, is probably laughing all the way down to his topiery garden!
hacking hacks.
Cyber Criminals = Hackers + Crime
Hackers - Hackers + Crime = Crime
And both parties committed crimes so yes they are both technically cyber criminals. But then most hacking has been criminalized, even what DVD Jon did with his own property would be considered a crime in the US, as is drawing a sharpie around the inner edge of a CD's data area.
"When information is power, privacy is freedom" - Jah-Wren Ryel
A dongle.
Because what NotW did is illegal and scummy behaviour. The mobile providers security setup is just piss-poor, but not illegal or scummy (they don't promise voicemail will remain secure).
If you search their twitter feed you'll see that they took exception to a story about them where they were referred to as "geeks" and "nerds".
There's no noble agenda behind LulzSec/Anonymous' actions, they just attack the people they don't like.