Slashdot Mirror
Anonymous Supporters Tricked Into Installing Trojan
dsinc sends this quote from a Symantec report:
"In 2011, dozens of Anonymous members who participated in distributed denial-of-service (DDoS) attacks in support of Anonymous hacktivism causes were arrested. In these DDoS attacks, supporters using the Low Orbit Ion Cannon denial-of-service (DoS) tool would voluntarily include their computer in a botnet for attacks in support of Anonymous. In the wake Anonymous member arrests this week, it is worth highlighting how Anonymous supporters have been deceived into installing Zeus botnet clients purportedly for the purpose of DoS attacks. The Zeus client does perform DoS attacks, but it doesn’t stop there. It also steals the users' online banking credentials, webmail credentials, and cookies. The deception of Anonymous supporters began on January 20, 2012, the day of the FBI Megaupload raid."
Further proof the bulk of "anonymous" are just brainless sheep on image boards.
Anonymous members don't have bank accounts.
Installing software that allows a third party to orchestrate DDoS? Sounds legit...
The US government was recently found guilty poisoning liquor with extra chemicals in addition to rubbing alcohol to make the boot leggers look bad.
It would not surprise me if they are doing the same to make Anonymous look like evil crackers and criminals.
http://saveie6.com/
I saw this article after I made this little infographic this morning and it made me laugh a bit. http://imgur.com/Vg5MT
After taking the prescribed pills, notonly have the nefarious Italian disinformation transmissions stopped coming from my espresso maker and shampoo bottles, but I also have become importent, which has sadly caused mearly half ofmy girlfriends, wives and mistresses to desert me. Good riddance,they were probably secret Italina agents anyway who left when they could no longer program my toaster-oven to hypnotically deceive me. Better fewer but better, I say.
"mearly half ofmy girlfriends, wives and mistresses"? Yeah, Silvio, I know you got tossed out of office; is that why you're so angry at Italy?
The pocket money they get from mummy and daddy doesn't make it worth while.
Time for the sheep to be sheared....
We are supposed to feel bad for these guys that were attempting to engage in premeditated malicious behavior, and in doing so they ended up getting robbed by someone else that took advantage of their stupidity?
It sounds like your basic con: Person #1 offers something Person #2 wants at a great deal. Person #2 is really greedy, and tries to trick Person #1 into a deal where Person #1 is at a disadvantage. Person #1 agrees to this as Person #1 was never at a disadvantage and Person #2 would have lost regardless of how the deal went down, whether under the original terms, or the new terms that Person #1 manipulated Person #2 into creating.
Although sometimes the original terms of the deal are extremely beneficial to Person #2 and they only become detrimental when Person #2 decides to change the terms.
The summary and TFA seem to hint that this is an FBI sting, but the details don't seem to support that.
Maybe more will come out about it later.
Sheesh, evil *and* a jerk. -- Jade
Correct me if I am wrong.
First, Anonymous hacked Symantec and revealed the source code for PCAnywhere. Symantec asked all users stop using PCAnywhere, because it contains backdoor (or "just" a hole? don't care).
But nearly at the same Symantec tried to hack Anonymous.
Something is wrong with that SOPA-loving company.
Seriously, the only purpose of a DDoS is to prevent somebody from being able to speak. I'm a huge advocate of freedom of speech, I love it when everybody is able to say whatever they want to say, and that includes people I don't like. I hate the MPAA/RIAA as much as anybody, but I want them to be able to say what they say. Websites are a form of speech, regardless of whether their purpose is to sell goods or to issue propaganda.
When you shut down those websites (like anonymous tried to do with the vatican) you are no better than the mafia; just trying to shut somebody up for the sole purpose that you don't like them. To these people, freedom of speech is good but only when they agree with the person who is speaking. That is just fucked up and goes against everything our democracy stands for; so I say fuck anonymous. If they want to spread the truth about the bad things that an organization does (like they did with scientology,) that is perfectly acceptable, but shutting them up is not.
To me this is poetic justice. No, I don't like to see people getting their identity stolen, but participating in inhibiting somebody else's ability to speak is just bad form, and I hope they get prosecuted to the fullest extent of the law.
Careful with names containing L slashdot.org/~AiphaWolf_HK slashdot.org/~AlphaWoif_HK slashdot.org/~AiphaWoif_HK
And this, people, is why you should only download software from the devs website.
GENERATION 24: The first time you see this, copy it into your sig on any forum and add 1 to the generation. Social exper
That Anonymous does not have any moral ground to stand on. Sure they may fight the man, but they'll have no compunction about robbing you blind either. That's not Robin Hood its street punk gangsta with a computer.
Silence is a state of mime.
He's just upset for being persecuted for sleeping with minors. Damn Italians and their standards of moral decency.
stealing personal information was for the lulz
I'm sure there were people trusting enough to download an unknown "hack-in-the-box" kit. The same low hanging fruit that get swept up for DDOS'ing paypal without a proxy. Not many, but the internet is a big place, and a sucker's born every minute.
OFC, hopefully their Anon computer and their banking computer aren't the same machines to begin with.
I'd agree with you but I'm afraid that Anonymous may take my website down an cause me some grief - somewhere about a dozen places below not being able to find a matching sock.
I have about as much sympathy for the people victimized by this scheme as I do for people that sign up for 419 scams where the come-on letter is clearly asking the recipient to engage in money laundering, theft, and blatant violations of tax and banking laws.
If you install malicious software on your computer on purpose, I have ZERO sympathy for you when it turns out the software includes you in the list of victims.
Disinformation to frighten off the mindless hordes who support Anon.
I think Anonymous basically are 4 - 5 really skilled people that really knows what they're doing, the rest is just a bunch of posers and script-kiddies that does whatever Anonymous want them to do - in fact, the worst posers probably does exactly what anonymous doesn't want them to do as well, since there are no real connection between them, no real mail, no real addresses - just random causes that some follow or not.
If there's an outrage in the world, it's very easy to make a distorted video, put on a guy fawkes mask, and post it on youtube via a tor connection. Any idiot can do that.
And of course there are crackers with malicious intent, they're pretty much like any other criminals, just using computer knowledge (borrowed from real hackers) to steal and destroy for purposes only known to them.
That's it - really...
What this world is coming to - is for you and me to decide.
Like this hasn't been going on in malware since forever?
Breaking News: your co-worker's have been tricked into installing malware by opening malicious emails!
Hell 4chan used to warn you not to open links, people that do to download executable have to be the idiot cancer they spend half their time complaining about there. Pretty sure they'd get no sympathy on /b/ either.
HA-Ha!
I am anonymous. I would log in to post this, but now I'm afraid Zeus will get my slashdot password.
"There's always a bigger fish."
I was having a look at one annonymous IRC channel more than a month ago, and I saw a few guys asking for a link to the "LOIC without the trojan".
I assume this is the same one they are talking about in this article; so this not relly new.
I find it quite ironic that Symantec, a company whose "antivirus" utilities allow the most virii into machines (both O/S and the antivirus software itself) and exhibits the most virus-like behavior when you try and remove it, is publishing the report.
I've had quite a few associates with virii over the last 12 months and each and every one of them had either Symantec Internet Security, McAfee or MS Security that were supposedly defending their systems. Every case of infection required a complete O/S reinstall to recover from the damage with the only exception of one client who opted to buy new machines.
FYI, there is a site called virscan.org where you could upload an infected/suspect file and they will run it through a host of antivirus software and provide results of each one. Each of the aforementioned products has been very poor on most of these, especially the EXE's masquerading as PDF's coming in via email.
I really don't have a horse in the race, but based on results from virscan.org, ESET NOD32 is the best recommendation as of late as it recognized all the samples I could throw at it. A real solution would be for MS to "sandbox" installed software to at least protect the O/S from infection, compatibility be damned, but I'm sure that won't happen.
As for the Anonymous angle, anything I would say has been said.
-- L8R, guitardood
I installed a virus on my computer! I didn't realize it would do something bad!
Spread links to "LOIC" downloads through Twitter, Facebook and random forums. Attain control of hundreds, if not thousands of computers. This is why you verify a clean source for your downloads, so you don't get infected by viruses. It's part of the Common Sense 2012 Anti-Virus Suite.
pwn3d.
actually yea, i saw this video on youtube with a masked guy asking to download hoic and or loic for an attack on facebook (what they would want to achieve with that is a bit unclear ... blacking out facebook for a few hours has like zero consequence or political impact imo) sounded a bit like testosterone headbutting contest ... so i download it and scanned them both, avira gave nothing but housecall found malware in one of them ... so that's what i posted in a reply to the video ...
i dont know who would be so smart as to just download something from anyone with a mask thats available anywhere and install it without scanning but apparently some people did ... stupid?
It's a piece of software intended to be used for DDOSing (even if participating is voluntary)... Did you really expect it not to register as malware if it's "legit"? I fail to see the point of scanning it in the first place.
Anyways... "Anonymous" is a banner like "Feminism". Anyone can label themselves as such if they feel like it. So different kinds of people apply the term to themselves that the term itself is essentially meaningless. Interesting thing isn't what Anon stands for but rather the fact that so many people (from gamers to script kiddies to half-competent security guys) want to be part of that social movement. Medium is the message, etc.
Virus detected at http://u-madb.ro/hemad/o-rly/yar.ly
Tells you something about the fucked up moral standards that he's being persecuted for sleeping with minors and not his political atrocities...
We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
...works.
It really does amaze me that humans ever managed to crawl out of the evolutionary cesspool. We spend far too much effort attempting to protect the stupid. We should let the universe do much more pruning of the dead wood. Here's your sign...
Think about it. If you know something and are caught, then you are punnished harder by the jewdges whereas someone whom is an idiot will get to collect trash along the freeway for a month.
Yew rike muh Gay Faux masquerade? Alone at-last, in the true Robot 9K1 of 4Chon(.net).
"I think Anonymous basically are 4 - 5 really skilled people that really knows what they're doing" - by MindPrison (864299) on Saturday March 03, @05:06PM (#39234165)
Thinking they're "skilled'? Man, ANYONE can be 'bogus' & destructive - it's VERY easy to do, vs. being actually creative & constructive. That is the TOUGH part, in the latter... not what Anonymous does, which IS the former.
* Some "Food 4 Thought" that - DO think about it!
APK
P.S.=> The only "GOOD" thing guys like Anonymous do, and yes, alongside "hacker/cracker" & even "malware" makers? Is point out what needs "shoring up"/reinforcement... but, that's about it, imo @ least!
... apk
And now right or wrong people will wonder if Anonymous is just an elaborate FBI honeypot to find tech "terrorists".
Clearly this trojan is just the modern day equivalent of a sit-in, the makers of it should be proud and supported, not arrested. That is, if we are to play by the same rules Anon wants us to play be for everyone.
Once again Anonymous has proven it isn't about robbing the rich and giving to the poor. They're out to fuck anyone who will sip from their cocktail they left unattended. Those who were compromised: you deserved it, now learn from it.
Chewbacon
The Bible is like Wikipedia: written by a bunch of people and verifiable by questionable sources.
The story is nonsense. I disassembled the program the original programs I also scanned them on a Windows system the story is just propaganda This Internet site is not popular enough for this propaganda to take effect. This is going to happen a lot.
Anonymous is not a single group it never has been no one group knows all the groups. The idea comes from the Second World War and the Nazis invasion of Europe. When the Nazis captured people they tortured them to find out who were running the organisation, but the person being tortured didn't know all the groups and therefore could not inform on them.
The idea was then taken up years later by the IRA and by Al Qaeda.
Anonymous is not a single group it is many it is an idea.
There will be many of these type of stories they will be accused of paedophilia, child stalkers and so on. If you cannot kill an idea discredit it.
The self-proclaimed "elite hackers" don't even know enough about system security to protect THEMSELVES. I absolutely LOVE it when the arrogant get taken down a notch through their own ineptitude.
Mind you, these are the same people that are surprised when police and three-letter agencies come a-knockin' at their doors with charges in South America and elsewhere. I find it so amusing that "security experts" don't understand how easy it is for three-letter agencies with access to ISP resources to track an attacker down.
The only thing that protects Anonymous from massive prosecutions is their sheer numbers -- there are too many of them for them all to be prosecuted, the same as for bit-torrent downloaders. So the three-letter agencies go after the few who seem to be coordinating and coding things, rather than the thousands of "members" who turn their machines over to participate in DDOS attacks under the control of someone else.
Nelson of "The Simpsons" said it best:
Ha-Ha!
I do not fail; I succeed at finding out what does not work.
Interesting this trojan was released before the actual operation. Anonymous recently had #OpSony compromised, likely what happened here. It seems Aaron Barr and his friends have been having some fun at Anonymous' expense. It seems people are unable to grasp the fact that anyone can schedule an Anonymous attack at any time. Anyone can post of Pastebin. This could easily be the US Military training for cyberwar, could be an opposing hacker group(they exist), or it could have been anyone else on the entire planet.
This is too hilarious. Anonymous types sit on a high horse claiming to be not only elite hackers, but smarter than the rest of us. The fact that many of them fell for an FBI trojan is too funny. The group as a whole has had a 'holier than thou' attitude and they've appointed themselves as judge, jury and hacksecutioner, so I find it too funny that they got hacked. When they finally get caught and eventually arrested I'll bet they'll cry in front of a judge when they face serious criminal charges. Can't wait. Maybe someone could make a crying Guy Fawkes mask?
“We are Onymous.
“Oops.”
"*Fake* APK post - did not mention hosts file." - by Anonymous Coward on Monday March 05, @09:13AM (#39247051)
Don't you have productive things to do instead of "stalking" my posts and having "such courage" on your part (not, lol) of replying to my post "anonymously"?
APK
P.S.=> Go away, worm... apk
that a law enforcement agency had the smarts to do this?