Slashdot Mirror
FBI Reports US Agencies Hacked By Anonymous
Rambo Tribble writes "Reuters is reporting that the FBI has issued a warning to several U.S. Government agencies that the Anonymous collective has hacked their systems. Included in the list of compromised agencies are the U.S. Army, Department of Energy, Department of Health and Human Services, and potentially many more agencies. The avenue of attack: Adobe Cold Fusion."
I thought the only people left in Anonymous were FBI informants.
who watches the watchers. it iz t3h 31337 h4x0rz t34m.
i pity the fool
Anonymous is a group of script kiddies from the 4chan. They can't "hack" anything.
Guy Fawkes lost.
They're way more afraid of hundreds or thousands of mini-Snowden Mannings popping up. Thing is, if these guys can get in so easily, what about hostile foreign gov'ts like the Chinese and Russians? Seriously. They were probably already there. This could also be a false flag pre-emptive strike. So, how can we vote for no confidence in our own system?
Now double our budget so we can counter them. And yeah, pass some laws against these terrorists.
Fuck systemd. Fuck Redhat. Fuck Soylent, too. Wait, scratch the last one.
And the party hasn't even begun yet,
you didn't really think that tapping 6+ billion peoples Internet would not have consequences ?
that Mr Anderson, is the sound of inevitability
2,0000 bank accounts....
Is that 2k or 20k?
TFA needs to be reviewed before going out.
I expect more from Reuters.
"An FBI Spokeswoman declined to elaborate"
I mean to say, what the hell happened? "Being hacked" isn't a real thing. You're missing stuff, or you see that stuff was accessed, or you found some new shit that shouldn't be there... Why aren't they telling us? Could it be because they left something wide open, and cannot legally admit to that?
Politics; n. : A religion whereby man is god.
Paul (hotel barber): Okay, I don't want to know nothing. I never saw you throw that gentleman off the balcony. All I care about is: are you happy with your haircut?
If there was ever any argument for not letting the U.S. government collect massive amounts of data on us, take over the entire healthcare system, etc., it's stories like this. They're simply not competent to do so. They're not even close.
The U.S. government was originally envisioned as a limited government, with a short list of enumerated powers, and all other government functions were left to the states. Over the years, and in wild violation of our Constitution, the federal government has grown way past that. Not only is their size and function not legally justifiable, but it's simply too big to work.
A wonderful reform would be to cut down the size of the U.S. government to just what the Constitution allows. Anything that requires coordination between the 50 states can be done in a "clearinghouse" manner, with the federal government providing a mechanism for coordination, but not control over it. That would be a much better way than letting the federal government assume primacy on subjects not in its Constitution.
"Once we've identified and embraced our sickness, we'll have strength...and that's when we get dangerous." - John Waters
If European with the inverted comma/decimal system it could even be a very precise 2 bank accounts...
Seven puppies were harmed during the making of this post.
... we can't tell.
it could even be a very precise 2 bank accounts
he must mean 'for large values of 2'
--
"It is now safe to switch off your computer."
We just learned from the press that targets and directions come from agency.
So, typical of government
- create a project
- fund it
- find a disposable hacker to perform the "attack"
- report success
- ask for more money and staff
The real threat is the people who have been compromised in these organizations.
I am the unwilling control for my Origin.
Yeah... I do because I'm old enough to remember that fiasco.
Is it in existence today? No.
You talk about the internet being clamped down to approved hardward/software/etc/etc... History proves that you can't shut down the flow of information.
Every PROHIBITION has backlash... Hell, prohibition is actually increasing the number of "Manic Psychosis" incidences in our youth today. There are tons of other examples but you should already be aware of them.
Prohibition of internet access will never work. lol
Keep it Clean! :D
Maybe that was an attempt at binary?
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
Is there anything your software canâ(TM)t do?
Guys, face some facts. The "Internet boogeyman" is created or controlled by government operatives.
It is called full spectrum dominance or controlled opposition in psyche-war terms where YOU the government are so powerful that it is not enough to put up defenses and monitor the battlefield, you actually go out and recruit, train and supply your own attackers to justify all your toys, budgets and Start Trek set-piece http://americablog.com/2013/09/nsa-outrage-star-trek-bridge.html that give you so much personal power in society.
Sure there are fringe guys meeting at the mall thinking they are part of some gray-hat brigade, but at so point they will infiltrated and then guided into honey-pot mischief.
If you think that is crazy, then why is the US supporting Al-Qaeda in Syria. Haven't your families been fighting and dying in Afghanistan fighting those same guys for over a decade. Do you own research.
Obligatory XKCD.
"If a nation expects to be ignorant and free in a state of civilization, it expects what never was and never will be."
Since when did Anonymous == Borg ???
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
All your base are belong to us!
Quid Pro Quo? Given the NSA's "hacking" of everyone's data, why should we be surprised that Anonymous is hacking the feds?
To quote the Bard - screw you assholes!
It's not beyond these people to lie to achieve what they want. Hopefully I didn't even need to mention that, but I did just to be sure we were on the up and up here. Reading the article, there is nothing I can see to verify that this was in fact the work of Anonymous. Some things don't line up with the normal activities. This article not only spreads FUD for internet censorship and control, but FUD about activism/hactivism.
From TFA, they first claim that anonymous used PDF exploits. Well, just about every botnet on the planet gets infected by some type of Trojan filled file. Anonymous is more well known for MITM attacks than trojaned files. Nothing convincing yet that it was anonymous.
Then they claim that anonymous stole 2,0000 bank accounts. That on a Rueters article should be a dead give away that this potentially propaganda. It didn't make it through normal editing.
The article does mention someone in the UK being indited on hacking into the US DOE, but then they lump everything else to that one person at anonymous. Maybe they have much more detail on proving that all of these hacks were anonymous and didn't show it. I'm not convinced by what was released here, and have not trusted these people to tell the truth for decades (amplified in the last few years).
-The wise argue that there are few absolutes, the fool argues that there are no probabilities.
Paul (hotel barber): Okay, I don't want to know nothing. I never saw you throw that gentleman off the balcony. All I care about is: are you happy with your haircut?
the feds have become the criminals imho
The downfall of this government will not be accomplished by 2nd amendment nuts and their horded ammo, rather by kids clicking from their parents' basements. You go guys!
Well when ya force software companys to leave holes open so ya can spy.....your enemy s use them as well.whos surprised? not me.
Jack of all trades,master of none
You keep posting that crap for every other article.
You're being sarcastic, right? You know tea party people think government is basically incompetent, incapable of say, launching a shopping web site, right? Conspiracy theorists, on the other hand, believe the government is secretly controlling everything, that they run everything. So pretty much opposite ideas of what government is. Here's a cheat sheet for you:
Believes government is incapable of setting up an insurance shopping web site: tea party
Believes government can hack your phone to spy on you with the battery removed: conspiracy theorist
"Mommy! the stole my marbles, can you buy me more?"
USSSSLiers on the loose.
Now what? Anonymous have MD weapons in their keyboards?
They are hacked by themself, nobody believes them but them.
Bahh, Bollocks!
Hand up anyone thats suprised US goverment IT systems got hacked once again...
Believes government is incapable of setting up an insurance shopping web site while supporting people who actively try to thwart the setting up of said website: tea party
There, fixed that for you.
Follow the money. If that won't convince you then I posit that anyone foolish enough to use Adobe Vectorware is at least uninformed, and incompetent, if not fully complicit in the security fail.
They feared that it could be used to suppress protest or support unpopular rule.
wtf? why the fuck was this software installed on systems or networks containing this type of information?
Someone tore down a poster hung up by the CIA and if caught faces 25 years in federal pound you in the ass prison!
FTFRandall
Hmm, the humour and sarcasm seem to have been be lost on you.
while supporting people who actively try to thwart the setting up of said website
If I may summarize what "actively try to thwart the setting up of said website" amounted to: several votes in the House of Representatives that had no effect whatsoever.
The failing rollout of Obamacare and the many lies associated with it are 100% owned and operated by the Democratic party.
much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
everybody knows that 2 doesnt exist, its just a boogyman thats used to scare children.
"Mommy! the stole my marbles, can you buy me more?"
USSSSLiers on the loose.
Now what? Anonymous have MD weapons in their keyboards?
They are hacked by themself, nobody believes them but them.
Bahh, Bollocks!
Is this a modern take on The Jabberwocky?
-- Using the preview button since 2005
Au contrair, mein freir. You had better go back and reread the news of the state of Massachusetts from GRoo-money days. Seems he put forward an old Nixon plan and the state bought it, and it worked there. That was all the fed house and senate would buy as a maximum coverage for those out of work. Then remember who is in charge of the departments, SES's, most of the liberal ones were canned by King George II as too liberal, and were replaced with GS subsidiaries. And those were not canned by the winner. So what are they again, liberals or ???.
Seriously, under W, national security was put aside. Now, we need to focus on this and make good with securing our systems.
I prefer the "u" in honour as it seems to be missing these days.
Department of Energy was hacked via Cold Fusion. How fitting.
Anon reported back at the beginning of Operation Last Resort that they were already much more deeply entrenched in US government networks than anyone had found. This isn't a new revelation, it's an ongoing event.
Where genius and insanity become confused true wisdom is found
The NSA has been 'shooting' exploits at internet targets by using MITM at the backbone.
Stop playing the victim card, the whole world (except the US citizens inside the US) already knows the US is nothing more than front for international bankers to do their dirty work.
One particular trick involved identifying the LinkedIn or Slashdot account of an intended target. Then when the QUANTUM system observed individuals visiting LinkedIn or Slashdot, it would examine the HTML returned to identify the user before shooting an exploit at the victim. Any page that identifies the users over HTTP would work equally well, as long as the NSA is willing to write a parser to extract user information from the contents of the page.
I read this /. post, but I also just read this:
http://www.wired.com/opinion/2013/11/this-is-how-the-internet-backbone-has-been-turned-into-a-weapon/
Who to believe? ? ?
I can't shake off a feeling that the law enforcement and friendly news sources are using "Anonymous" as a boogeyman. When I see "Anonymous collective has hacked their systems", I read "Their systems were hacked. FBI has no leads". The law enforcement has finally found a perfect line for every situation where they demonstrate incompetence, since "anonymous" turns into "Anonymous" so easily.
Anonymous should just announce a name change "We who were formerly Anonymous announce that we are officially changing out name to 'The Boogeyman', and are claiming credit for X, Y, Z that we have been accused of perpetrating" kinda thing.
Then all the news reports get corrected to "Security Company Q attacked by The Boogeyman".
Hilarity ensues...
A Justice department that claims it's getting hacked (to worrisome levels) by teenagers. A National Security Agency that spends hundreds of billions spying on the citizens it claims to be protecting while accomplishing nothing. A Defense Department whose specialty is fighting foreign wars badly, while shelling out trillions to contractors.
It's well past the time where an honest government, or a real democracy, would say "enough failure" throw in the towel, and start again from scratch.
it clearly stated cold fusion was the problem
and with all the 0days for that shit floating around im not surprised
And who protects you from your government?
The terrorists.
You and I just sit here and eat the free bread and watch the circuses.
I suggest you check the voting history of the Affordable Care Act. There is a distinct lack of Republican votes.
much of left-wing thought is a kind of playing with fire by people who don't even know that fire is hot - George Orwell
No, too many real English words, not enough slithy toves.
If I have been able to see further than others, it is because I bought a pair of binoculars.
Twas bryllyg.
Krebs and Holden Security bloggers reported circulating copies of an Adobe Source Code archive. Implict is the archive contained Coldfusion source code. At the time they reported the archive encrypted and they were unable to break the encryption.
Fast forward, code surfaces from the archive unencrypted for sale on the internet.
Websites running Coldfusion 8 (an old version no longer supported or monitored for security fixes) is compromised on a number of websites. Re-developing and re-deploying websites developed for an older unmaintained code base is expensive, if possible at all and institutions with limited budgets rarely do it, even if prosecuted. Its easier to "notify" users.
Krebs and Holden also notice a credible exploit and report it to Adobe, who notes it is effective but not against current products-- however they release a patch for the vulnerability later Nov 12 against CF10.. report its relevant for CF10, CF9.. and that CF8 is no longer supported and that they believe CF8 has been compromised and is the attack vector for hackers currently.
Moral.. stop running CF8, destroy the old websites using CF8 and re-commission new websites with modern and security supported server software, stop using "notify next of kin" as a cost mitigation factor. And apply security patches for CF9 and CF10 immediately, the attack is being suggested as "Zero Day" and having been used for some time.
Once the "source code" for a website running on a Framework is "exposed" by the application server using read-only rights.
Then that specific website "becomes" exploitable, even if the application server is "patched" with a security patch.
In which case "destroying" the old website code makes sense, as it has been "mapped out" by hackers.
This procedure of "scorched Earth" re-development should be "written in the Constitution" and "mandated" by the power of Law!
Sometimes when you hack the planet, the planet hacks you!
If you're still using Coldfusion, you deserve to get hacked.
Are agnostics skeptical of unicorns too?
Cold Fusion is one of the buggiest, most insecure of all the web code development platforms, in a world riddled with buggy, insecure web platforms.
...Steve
ban malpractice lawsuits like Hong Kong, and you don't need insurance.
Watching this whole meltdown is almost as entertaining as watching a bunch of warez kids fight it out with a bunch of pedos over control of a dump site.