By Sven Olensky,on March 6th,2012 Turns out that Sabu,the leader of LulzSec,was arrested late last year and started working for the FBI since they threatened to take his kids away. Senior leaders of the group were arrested today. The Guardian reports: The FBI has struck a major blow against hacking groups after arresting or charging five key members of the LulzSec hacking crew and revealing that the head of the group,who went by the nickname “Sabu”,has been working for it since the middle of 2011. Hector Xavier Monsegur,known as Sabu,was charged with 12 criminal counts of conspiracy to engage in computer hacking and other crimes in court papers in Manhattan federal court. Monsegur,an unemployed 28-year-old Puerto Rican living in New York,pleaded guilty to carrying out online attacks against PayPal and Mastercard,documents unsealed in a Manhattan court on Tuesday shows. The charges were filed via a “criminal information”form,which means the suspect,Sabu,has likely been cooperating with the government. Five other people – two in the UK,two in Ireland and one in Chicago – were either arrested or charged by the FBI on Tuesday. By Sven Olensky,on March 4th,2012 Symantec reports that [...] In the wake Anonymous member arrests this week,it is worth highlighting how Anonymous supporters have been deceived into installing Zeus botnet clients purportedly for the purpose of DoS attacks. The Zeus client does perform DoS attacks,but it doesn’t stop there. It also steals the users’online banking credentials,webmail credentials,and cookies. [...] The deception of Anonymous supporters began on January 20,2012,the day of the FBI Megaupload raid. An attacker took a popular PasteBin guide,used by Anonymous members for downloading and using the DoS tool Slowloris,and modified it. In this modified version,the attacker changed the download link to a Trojanized version of the Slowloris tool with matching text [...] Not only will supporters be breaking the law by participating in DoS attacks on Anonymous hacktivism targets,but may also be at risk of having their online banking and email credentials stolen. The joining of malicious financial and identity fraud malware,Anonymous hacktivism objectives,and Anonymous supporter deception is a dangerous development for the online world.
Always be careful what you download. Think twice before participating in ‘campaigns’against ‘the Man’. You can’t trust anyone on the Internet. By Sven Olensky,on February 7th,2012 BBC reports, Feeds from thousands of Trendnet home security cameras have been breached,allowing any web user to access live footage without needing a password. Internet addresses which link to the video streams have been posted to a variety of popular messageboard sites. Users have expressed concern after finding they could view children’s bedrooms, . . . →Read More:Trendnet home security cam flaw exposes video feeds on net By Sven Olensky,on February 3rd,2012 Many outlets,amongst them the Wall Street Journal report today that the Anonymous hacker group ‘intercepted’a conference call held by the FBI and Scotland Yard. They report, WASHINGTON—The Federal Bureau of Investigation said cybercriminals hacked into a cybercrime conference call between its agents and law enforcement officials overseas. [...]The FBI said the breach wasn’t . . . →Read More:DLP lesson:Embarrassing:Anonymous tapes FBI –Scotland Yard Conference Call By Sven Olensky,on February 2nd,2012 Verisign’s DNS service was hacked a number of times,as they recently admitted in their SEC filing,InfoWorld reports: In October 2011,Internet infrastructure firm VeriSign released its usual quarterly report. Buried in the 50-page filing to the SEC was the revelation that the company had been breached multiple times the previous year. The incidents . . . →Read More:Verisign hacked several times in 2010,didn’t disclose until now By Sven Olensky,on August 28th,2011 UPDATE 08/29/2011 09:30PM EDT: GANSEC analysis:It looks like that this worm is pretty basic,the only change being the usage of the RDP-login-mechanism. It uses a dictionary based password attack against the Administrator account,using a very limited list. To us,this looks more like a trial run or experiment than a full . . . →Read More:Morto –Windows Worm spreading via RDP –Remote Desktop Connections By Sven Olensky,on August 28th,2011 A couple of days ago a script was published on the Full Disclosure mailing list:“Apache Killer”. It exploits a denial of service vulnerability in any recent Apache web server installations and it has been confirmed working. Any web server running current versions of Apache (and older) can be affected by it. So far,no . . . →Read More:Apache-Killer –Denial of Service against your web server –exploit in the wild By Sven Olensky,on June 9th,2011 If you are a small-to midsize business,you may think that if you become the victim of an attack resulting in loss of money,you are protected by your bank,just like you would be if your personal credit card would get charged fraudulently. Well,you may be wrong. You may be on the hook . . . →Read More:As a business,you may be responsible for fraudulent charges,not your bank By Sven Olensky,on June 7th,2011 Too little,too late —they could have admitted that when it first went public –RSA finally admitted that SecurID tokens have been compromised. How many? All of them. HelpNetSecurity reports: The admission comes in the wake of cyber intrusions into the networks of three US military contractors –one of them confirmed by . . . →Read More:RSA finally admits that SecurID tokens have been compromised By Sven Olensky,on May 28th,2011 Looks like hackers broke into networks owned by Lockheed Martin and other Department of Defense contractors. Reuters reports, They breached security systems designed to keep out intruders by creating duplicates to “SecurID”electronic keys from EMC Corp’s (EMC.N) RSA security division,said the person who was not authorized to publicly discuss the matter. It was . . . →Read More:Lockheed Martin and other DoD contractors breached | | |
