Hacker Group LulzSec Challenges FBI 308
Tiek00n writes "Hacker Group 'LulzSec' has gained some attention recently for their hacks of PBS and Sony. Their most recent target: FBI affiliate Infragard. The group claims, 'It has come to our unfortunate attention that NATO and our good friend Barrack Osama-Llama 24th-century Obama have recently upped the stakes with regard to hacking. They now treat hacking as an act of war. So, we just hacked an FBI affiliated website (Infragard, specifically the Atlanta chapter) and leaked its user base. We also took complete control over the site and defaced it...'"
Haha (Score:2, Interesting)
Well done LulzSec. Exposing the hypocrisy in the US government... condemning hacking while funding it themselves.
Clever (Score:3, Interesting)
Bring it down! Bring it all down! (Score:3, Interesting)
We see with Apple and Google phones tracking people, SSD not being securely erased, police with gadgets that rip all data off cell phones, back doors in routers, NSA rooms on the AT&T backbone servers, printers with secret yellow codes, carriers recording GPS coordinates 8 times a hour, TOMTOM and ONStar snitching the list goes on and on... We see EXACTLY what the jack booted government thugs are making the industry do with products we need to use, grossly invading the rights of everyone in the process and under the guise of trying to catch a few bad guys. Enough is ENOUGH!
Just a bully (Score:4, Interesting)
LulzSec just showed their hand that they are operating like a schoolyard bully. "Do what we want / act like we want, or we'll hack you."
You might think they are standing up to a bully (USA), but taking down 3 different Sony companies smells of a bully, kicking them while they are down.
Re:Just a bully (Score:5, Interesting)
Worse than that, I'd contend that the intention is not to embarrass Sony, but rather to attack Sony's customers. I hate to use the T word, but this clearly is dictionary-definition terrorism: attacking a soft target in order to bully them into falling in line with your demands. Sony's customers are seen as the enemy, as much as Sony itself is, because they provide positive reinforcement to Sony (in the form of revenue), while breaking any attempts to boycott Sony. By adding a negative consequence to being Sony's customer (privacy invasions), they hope to influence the customers' actions.
Obviously, they're not setting off bombs in crowded cities or crashing planes into skyscrapers. They're just a bunch of stupid kids inconveniencing people. That doesn't change what word the dictionary uses to define such actions, however...
Admittedly, I've spent so many years trolling Slashdot, it's difficult for me to switch out of "troll" mode and make a legitimate point without resorting to any trolling, but this time, I'm honestly just sayin'. And, that, kids is the danger of a lifetime of trolling: eventually you can't even tell when you're trolling or not.
Really, no salt? (Score:5, Interesting)
So, they didn't even salt the md5 hashes. How lazy does this "security" firm want to be?
Also, how simple do some of these passwords want to be? LOL "infragard26j" are you kidding me? Come on IBM, lift your game!
Here's a copy of the exposed file on PasteBin [pastebin.com]
I've noticed that the "cracking" method of choice was just "see if these are known values in public rainbow tables". Which, many of them were. Huzzah!
Also, I thought that all md5's had been cracked before, however it seems not so. So, I decided to calculate how many gb such a table would AT LEAST have to be [wolframalpha.com]. Well, I was quite surprised. Unless there's collisions or my math is fucked, that's quite a lot!
Seems Unveilance [unveillance.com], the company which had its CEO's private emails leaked, has responded and sort of, also authenticated the hack too. Unveillance Official Statement [unveillance.com]