Hacking Team Scrambling To Limit Damage Brought On By Explosive Data Leak

← Back to Stories (view on slashdot.org)

Hacking Team Scrambling To Limit Damage Brought On By Explosive Data Leak

Posted by timothy on Tuesday July 7, 2015 @01:38AM from the sounds-dangerous dept.

An anonymous reader writes: Who hacked Hacking Team, the Milan-based company selling intrusion and surveillance software to governments, law enforcement agencies and (as it turns out) companies? A hacker who goes by "Phineas Fisher" claims it was him (her? them?). In the meantime, Hacking Team is scrambling to minimize the damage this hack and data leak is doing to the company. They sent out emails to all its customers, requesting them to shut down all deployments of its Remote Control System software ("Galileo") — even though it seems they could do that themselves, as the customer software apparently has secret backdoors. Perhaps they chose the first route because they hoped to keep that fact hidden from the customers? And because every copy of Hacking Team's Galileo software is secretly watermarked, the leaked information could allow researchers to link a certain backdoor to a specific customer.

21 of 95 comments (clear)

Min score:

Reason:

Sort:

Re:Phineas is masculine by Instantlemming · 2015-07-07 02:06 · Score: 2

That doesn't say anything of the gender of the person using that nom de plume.
The fickle finger of fate..... by Proudrooster · 2015-07-07 02:07 · Score: 5, Insightful

Boys and girls there is a lesson in this story. Each of us has a karma bucket. When that karma bucket is depleted the "fickle finger of fate" may reach and touch us causing untold calamity. Hacking Team's karma bucket has a giant hole in the bottom and can never be refilled. All of their tricks and source code have been laid bare, and are now in full view of the Internet.
If someone has a link the to torrent, please post it.
1. Re: The fickle finger of fate..... by Anonymous Coward · 2015-07-07 02:16 · Score: 5, Funny
  
  I'll drink to that! Wait...
2. Re:The fickle finger of fate..... by Thud457 · 2015-07-07 02:55 · Score: 2
  
  As the Bataman said, "the world only makes sense when we force it to".
  That's why we all morally obligated to track down evildoers and punch them in the balls. I'm pretty sure Thomas Jefferson wrote that, somewhere.
  
  --
  the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
3. Re:The fickle finger of fate..... by Anonymous Coward · 2015-07-07 03:23 · Score: 3, Informative
  
  Sure - the torrent is:
  https://mega.co.nz/#!Xx1lhChT!rbB-LQQyRypxd5bcQnqu-IMZN20ygW_lWfdHdqpKH3E
  mirror at:
  https://ht.transparencytoolkit.org/
  source code up on guithub:
  https://github.com/hackedteam?tab=repositories
4. Re:The fickle finger of fate..... by Anonymous Coward · 2015-07-07 04:11 · Score: 2, Interesting
  
  Y'know it's funny... This particular leak has spurred the economy. I went out yesterday and bought a 3TB drive specifically to have extra space to download and extract and peruse the 400 GB of Hacker Team evilware. Current ETA gives me 11 more hours before I'm done but I think it's worth it just to poke around.
5. Re:The fickle finger of fate..... by nickweller · 2015-07-07 10:35 · Score: 2
  
  @Proudrooster: "If someone has a link the to torrent, please post it."
  
  torrent
6. Re:The fickle finger of fate..... by ancientt · 2015-07-07 16:12 · Score: 2
  
  I'd never read that story, and I consider myself an Asimov fan. Thank you!
  I was thinking of this one http://www.galactanet.com/oneo...
  
  “How many times have I been reincarnated, then?” “Oh lots. Lots and lots. An in to lots of different lives.” I said. “This time around, you’ll be a Chinese peasant girl in 540 AD.”
  
  --
  B) Eliminate all the stupid users. This is frowned upon by society.
Couldn't have happened to a nicer group of people by FreeUser · 2015-07-07 02:07 · Score: 5, Insightful

Ah, schadenfreude. Seeing these jerks die by the sword they have wielded against the rest of us is just too satisfying.
I particularly like how it's come out that they were backdooring (and presumably screwing, or at least reserving the opportunity to screw) their own ethically-challenged customer base.
Really, it's not nice to take such delight in the downfall of others, but it just feels so damn good.

--
The Future of Human Evolution: Autonomy
Plus some GPL code by ssam · 2015-07-07 02:12 · Score: 5, Interesting

Also some GPL derived drivers that they have been distributing to their customers. https://twitter.com/mjg59/stat...
This is a lesson to everyone... by Anonymous Coward · 2015-07-07 02:22 · Score: 4, Insightful

This is a lesson... software with backdoors, the backdoors eventually get found out. This is a real proof against the anti-encryption lobby, that if encryption is gutted, then only the bad guys will have actual security.
Even if it something that requires a private key to access, the private key can be hacked or physically stolen if stashed on a HSM.
Re:Phineas is masculine by Dutch+Gun · 2015-07-07 02:29 · Score: 4, Insightful

Who needs a name? Statistical probability indicates that person is almost certainly a male.

--
Irony: Agile development has too much intertia to be abandoned now.
What Were They Hoping For? by GTRacer · 2015-07-07 02:30 · Score: 5, Insightful

I'm curious what Hacking Team thought was worth the risk of watermarking their products to customer installations and having these alleged backdoors to backdoors. Seems like a lot of risk for no payoff unless they hoped one day to "flip the script" and hack their customer base...

--
Defending IP by destroying access to it? That makes sense, RIAA/MPAA. Go to the corner until you can play nice!
1. Re:What Were They Hoping For? by s.petry · 2015-07-07 02:43 · Score: 4, Insightful
  
  I'm curious what Hacking Team thought was worth the risk of watermarking their products to customer installations and having these alleged backdoors to backdoors. Seems like a lot of risk for no payoff unless they hoped one day to "flip the script" and hack their customer base...
  I can easily see a few reasons for them to watermark their customer's installations of their software. First is obviously leverage against prosecution. Second would be to determine who did what with their software. Their own back door would allow them to kill software on a non-paying customer (or one that caused litigation). The last is an increase in revenue. There are some interesting ways to encrypt your binaries which the watermarks could have done. Sudan's software would not be able to run Nigeria's software for example, so this would ensure that everyone pays for everything individually.
  Lots of reasons for an immoral shitbag company to do immoral shitbag things to everyone, not just "some" people.
  
  --
  -The wise argue that there are few absolutes, the fool argues that there are no probabilities.
Holy crap ... by gstoddart · 2015-07-07 02:31 · Score: 3, Interesting

even though it seems they could do that themselves, as the customer software apparently has secret backdoors
So basically even security researchers are morons who put in secret back doors?
Bloody idiots.
This is really simple: companies need to have very strict liability for doing stupid stuff like this. Putting secret backdoors should be treated the same as hacking into it ... especially if someone else exploits that.

--
Lost at C:>. Found at C.
1. Re:Holy crap ... by DarkOx · 2015-07-07 02:45 · Score: 3, Insightful
  
  These guys are not "security researchers" doing responsible disclosure or even just quietly helping secure their own customers against unpublished threats.
  The might be doing research; but they are basically arms dealers. Weaponizing software and selling it to whoever will pay.
  I am not surprised they'd backdoor it frankly. If all of my customers were professional liars known for running false flags etc, I'd have to think seriously about inserting water marks and backdoors too. If nothing else so I had some way prove whatever gets done with those tools was not done by me.
  The phrase "there is no honor among thieves" comes to mind.
  
  --
  Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
2. Re:Holy crap ... by s.petry · 2015-07-07 02:47 · Score: 3, Interesting
  
  And who exactly would have prosecuted them? The Governments paying them to build software so that the Governments could hack people? Without the source leak, how would anyone have known except by the end consumer providing network dumps? Call me a skeptic, but I doubt the people buying this were installing it locally for forensic reasons.
  
  --
  -The wise argue that there are few absolutes, the fool argues that there are no probabilities.
3. Re:Holy crap ... by drinkypoo · 2015-07-07 07:23 · Score: 2
  
  I am not surprised they'd backdoor it frankly. If all of my customers were professional liars known for running false flags etc, I'd have to think seriously about inserting water marks and backdoors too. If nothing else so I had some way prove whatever gets done with those tools was not done by me.
  Here's the problem with doing business with criminals, whether they're ordinarily-labeled "criminals" or intelligence agencies or whatever: if they're incompetent, you don't want to do business with them because of all the ways in which they can implicate you. But if they're competent, you don't want to do business with them because of all the ways in which they could take advantage of you. If they're incompetent, then they ought to be little danger to you, so you don't need that kind of protection. If they're competent, then they can and will do anything to you, and they're probably smart enough to have some third party check your work and look for back doors... and when they find them, your ass is grass.
  These guys will be lucky if they get to go on drawing breath.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
The enemy of my enemy != my friend by jimbolauski · 2015-07-07 03:43 · Score: 4, Interesting

While I am happy that Hacking Team got their comeuppance I am not ready to support their new found nemesis. This could be nothing more then a turf war and the last thing I want is another set of more cunning bad guys getting their seed money from me.

--
Knowledge = Power
P= W/t
t=Money
Money = Work/Knowledge so the less you know the more you make
HT is untrustworthy by bagofbeans · 2015-07-07 05:25 · Score: 3, Informative

Per TFA:

According to Motherboard's Lorenzo Franceschi Bicchierai, the company has sent out emails to all its customers, requesting them to shut down all deployments of its Remote Control System software ("Galileo") - even though it seems they could do that themselves, as the customer software apparently has secret backdoors. Perhaps they chose the first route because they hoped to keep that fact hidden from the customers?

Yet, according to ]Hacking Team[ Six Confidential Whitepapers on cryptome.org, HT explicitly state on page 31

NOTE HackingTeam have no way of connecting to or receiving any information from the Customerâ(TM)s RCS installation.

So, if HT lie to their rather high powered customers about a major detail like that, what else?
Re:The only way the public will learn... by greenbird · 2015-07-07 05:43 · Score: 2

show everyone how undermining the security measures of the global tech. economy and culture is tantamount to shooting yourself in the foot.
Are you kidding? The powers that be will spin this as proving their point:
If it weren't for all this evil encryption they would have no problem catching the villainous hackers that perpetrated these crimes against humanity by these supporters of terrorism and child pornography for the children. It's only because of un-backdoored evil encryption that the angelic powers of all good failed to stop these terroristic endeavours which exposed this good company that has help the FBI foil 1 million terrorist plots by providing means of accessing evilly encrypted systems.

--
Who is John Galt?