Lizard Squad Targets Tor

mrspoonsi tips news that Lizard Squad, the hacker group who knocked Xbox Live and the PlayStation Network offline on Christmas morning, has now turned its attention to Tor. After tweeting that they were targeting a Tor-related zero-day flaw, the group is now in control of 3,000 exit nodes — almost half of them. "If one group is controlling the majority of the nodes, it could be able to eavesdrop on a substantial number of vulnerable users. Which means Lizard Squad could gain the power to track Tor users if it infiltrates enough of the network."

The TOR Project was well aware of this a while ago

[muphin]

As reported by /. http://tech.slashdot.org/story...
so i believe they are working on a fix.

Not really an 0day exploit

[El_Muerte_TDS]

Either way, @LizardMafia's Tor relay attack isn't new. There's a paper on how Tor loses anonymity if over 50% of relays are compromised.

https://twitter.com/kaepora/st...

I was going to go with botnet, but many LizardNSA relay IPs appear to route back to Google Cloud. Thousands of tiny VMs at low bandwidth?

https://twitter.com/kaepora/st...

You can see this whole list of tor nodes here: https://torstatus.blutmagie.de...
All Lizard nodes resolve to *.bc.googleusercontent.com

Re:The TOR Project was well aware of this a while

[OverlordQ]

Not the same issue at all. All this is is IdiotSquad starting up a bunch of Google Compute VMs as tor exit nodes.

Headline is wrong and sensationalistic

[carlhaagen]

They haven't taken over 3000 Tor relays - they have set up 3000 new relays of their own, thus having control of over 50% of the available relays.

Re:Wonder what 0 days are in use...

[carlhaagen]

They haven't been kicked down. LQ set up 3000 new rogue nodes.