Anonymous Defaces Panda Security Site

An anonymous reader writes "Surviving members of anonymous and/or lulzsec have hacked Panda Security's systems and defaced their site. Looks like revenge is coming back." El Reg has screenshots of the defacement. Panda Security says the intruders only managed to exploit the web server and did not compromise their internal networks.

Remove one head.....

[Moheeheeko]

....two more shall take its place.

Re:Remove one head.....

[bigpaperbag]

And those two shall continue in pointless vandalism that no one beyond their twitter followers and the people cleaning up after them care about.

Re:Remove one head.....

[Anonymous Coward]

Quite relevant. [xkcd.com]

Re:

[The Mister Purple]

Indeed!

You ignore the threat of impunity

[Anonymous Coward]

What's done is not important. That it's done with impunity is.

One day someone will decide to kill someone "for the lulz",

and it will be hilarious.

Re:

[Anonymous Coward]

I believe that has happened many, many times in the course of human history. It just didn't have a lame catchphrase to go with it back then.

Well, there IS "thrill kill". I guess that counts, though it's not nearly as lame as "for the lulz".

Re:

[causality]

And those two shall continue in pointless vandalism that no one beyond their twitter followers and the people cleaning up after them care about.

You're excluding a significant group: those who appreciate irony. I mean, it's a security company. You'd expect them to know how to secure a Web server (or to choose a quality hosting service if they don't run it themselves).

You don't find that amusing?

Re:

[idontgno]

"Irony" is defined as "poignantly contrary to expectation". If you find the hacking of any "compusec" company ironic, the problem is in your unrealistic expectations.

Re:

[AtomicAdam]

http://theoatmeal.com/comics/irony [theoatmeal.com] You should probably read this comic about Irony before you start to tell others about Irony

Re:

[causality]

"Irony" is defined as "poignantly contrary to expectation". If you find the hacking of any "compusec" company ironic, the problem is in your unrealistic expectations.

If you must have a dictionary definition, perhaps you would read this link [reference.com] and see Number Five.

And yeah, I expect a "security company" to have a basic level of security. They accomplish at least that much, or they fail in a way I find comical. This one failed. It is possible for others to be more successful. This is determined solely by a given company's performance. "Unrealistic?" Only if you assumed I was shocked or surprised that some company somewhere failed at something. But you see, I never

Re:

[Khyber]

""Irony" is defined as "poignantly contrary to expectation""

A security company lacks security to secure their own shit.

That is the VERY definition of irony, you ill-educated nitwit. Go back to school.

Re:

[X0563511]

Yes and no. I see it this way:

They did the risk analysis and determined that putting all kinds of effort into making their external webserver was not worth it. This gives them more resources to secure what actually matters, the internal stuff.

Re:

[causality]

Yes and no. I see it this way:

They did the risk analysis and determined that putting all kinds of effort into making their external webserver was not worth it. This gives them more resources to secure what actually matters, the internal stuff.

In terms of cold logic, devoid of any notion of PR or politics or marketing, I agree with you. Unfortunately a business environment includes those things as well.

The problem is that a company wanting to convince potential clients of its security expertise really wouldn't want this kind of PR. Allowing this to happen is a bad move. It would be reasonable for potential customers to ask, "if they couldn't secure their own server that they have or should have had full control over, how are they possibly g

Re:

[future assassin]

>And those two shall continue in pointless vandalism that no one beyond their twitter followers and the people cleaning up after them care about.

When the man in charge no longer fears its citizens, vandalising the man is the next best thing before taking up arms.

Re:

[operagost]

If these amateurs keep getting butthurt and attacking people just for calling them "childish", they won't last long.

Re:

[rtb61]

Now would that be the Fucking, Bloody, Idiots crew or Homeland Insecurity, or some foreign government agency. These days it's getting really hard to tell who is doing what under the title of 'Anonymous'. Don't forget those Fucking, Bloody, Idiots involved in the Lulsec debacle also want to remain 'Anonymous'.

I would hope that you comment does not refer to the disturbing trend amongst the right of US politics of the desirability of homosexual rape in prisons, seriously you are aware of how truly sick that

Re:

[Anonymous Coward]

The moral of the story is that anonymous should stay anonymous, even amongst themselves. There is no reason why they can't and no reason why they should assume each of their peers are trustworthy.

Re:

[X0563511]

Yes. It's an interesting word that is used when referring to a group of mixed/known gender people in third person.

Re:

[V. P. Winterbuttocks]

Pray, tell what are some interesting words that are used when referring to a group of single/known gender people in the third person? Like, the word that you'd use to refer to a group of only men, or to a group of only women?

Re:

[X0563511]

referring to a group of single/known gender people in the third person?

He/him/his/etc
She,her,hers/etc

to refer to a group of only men, or to a group of only women?

It's actually not just one word that is used:
Those men
Those women

Re:

[V. P. Winterbuttocks]

I suppose you're correct, "those men" or "those women" could take the place of the general word "they". However, you could just as easily still use "they".

Re:

[sexconker]

The moral of the story is that anonymous should stay anonymous, even amongst themselves. There is no reason why they can't and no reason why they should assume each of their peers are trustworthy.

Anonymous != LulzSec.
LulzSec != Anonymous.

Re:

[afabbro]

Anonymous != LulzSec. LulzSec != Anonymous.

Oh, whatever...anonymous runs around saying it's anonymous and you can't define anonymous and anonymous is an "anarchic, digitalized global brain". So for all you know, there is a lot of overlap or even 100% overlap. You don't really know.

Re:

[Oligonicella]

Assertion != Fact

Re:

[ackthpt]

....two more shall take its place.

Eventually intelligent people realize there's something better to do than watch your leet skillz atrophy in prison and find something more constructive to do.

Re:

[Em Adespoton]

You mean have their leet skillz starve half to death as they work 60 hours a week to baaaaaarely make ends meet...?

No, I think he means they'll realize that they can make more money writing Fake Antivirus malware for russian gangs and skimming profits off the rounding errors of electronic funds transfers -- and that they're less likely to get caught doing it.

Really... the thing about activism of any sort is that getting caught is part of the deal. It's civil disobedience, not criminal intent to harm -- but it happens to be actions that DO harm more than the perpetrators realize, and has thus been deemed a criminal offe

Re:

[GameboyRMH]

Yeah I lol'd at "surviving members of Anonymous" XD

Re:

[GmExtremacy]

I was surprised to hear that any were still alive after the massacre...

Fir...HA HA COMMENT DEFACED

[egamma]

But seriously, accounts for users gone 5 years? It seems the security team needs to talk to the marketing team about keeping their external server cleaned up.

Re:

[psergiu]

The Panda Security site now serves malware - it asks me to install an antivirus. And i'm on a mac. Same message when accesed from Linux.

Re:

[icebraining]

Well, there are antivirus programs for Linux; they're useful if you're scanning a Windows partition or running an email server.

Oblig

[g0bshiTe]

Don't be a sad Panda!

Script kiddies revenge

[denis-The-menace]

Being that Anon is a *loose* organization, I hope this is just a whiny branch of Anon and not something that most of Anon approves of.

Defacing for defacing sake is childish.

Losses on both sides should be expected.

Re:

[MightyMartian]

Judean People's Front, bloody splitters!

Re:

[Like2Byte]

Judean People's Front, bloody splitters!

I thought they were the "Peoples' Judean Front."

Re:

[Medievalist]

Judean People's Front, bloody splitters!

I thought they were the "Peoples' Judean Front."

No, that's us. They're the Judean Popular Peoples' Front.

Bloody splitters.

Re:

[afabbro]

Defacing for defacing sake is childish.

Defacing for defacing sake is the Anonymous motto.

Re:

[Ziekheid]

I'm suprised people still don't realize what the true Anonymous collective is. Doing it for the lulz, it has nothing to do with politics. Splinter cells that spawned off the original Anonymous may have an agenda but the original Anonymous did (and does) not.

umm why?

[G00F]

So why hack panda?

If it really was anonymous, who's a loose group of hackers trying to change/make things better, what was their goal?

Re:umm why?

[Kenja]

Because they could and no one had paid attention to them (Anonymous) in a while.

Re:

[Anonymous Coward]

Well... according to the SECOND PARAGRAPH of the article (which you can get to if you click the hyperlink cleverly disguised as a hyperlink) Panda Security helped the FBI infiltrate chatrooms and messageboards.

Re:

[Hentes]

I think they did it for the lulz.

Re:

[ThatsNotPudding]

If it really was anonymous, who's a loose group of hackers trying to change/make things better, what was their goal?

Mainly - if AnonymousRC is to be beleved - Panda's head was talking shit about their helping the FBI and all the arrests, thus the karma blowback.

Putting politics (if their actions and the overkill reactions can be termed politics) aside, should anyone be using the antivirus products of a company that got pwned hard by hackers? At least they announced it, but it makes you wonder how many bla

Re:

[Inda]

Wasn't me. I didn't do it. Try Anonymous.

After all... they must die:

[jkiller]

What shall be done about these Chinese bears? http://www.youtube.com/watch?v=ANg7iPu9DAg&noredirect=1" [youtube.com]

...huh?

[JustAnotherIdiot]

Surviving members of anonymous and/or lulzsec

You make it sound like there's only a handful of them, are you new to the internet or something?

Re:

[afabbro]

You make it sound like there's only a handful of them,

People who want to feel alternative and underground and rebellious and cool by wearing Guy Fawkes masks? There's a ton.

People who also break into computer systems and deface web sites? A handful.

Re:

[X0563511]

People who also break into computer systems and deface web sites? A handful.

Unfortunately not.

Re:

[GameboyRMH]

Yeah they're like Highlanders, keep taking 'em out and eventually there will only be one! :-P

"Surviving"?

[elrous0]

What, were they hit by a tornado? The FBI, got warrants on 5 people--one of whom was a traitor, and several others in countries where they haven't even been arrested yet. I'm pretty sure Anon is big enough to not be devastated by the loss of one Benedict Arnold and four foot soldiers.

Re:

[GmExtremacy]

There are no "brilliant" guys. Otherwise, I doubt they'd be getting caught so easily.

Re:

[Em Adespoton]

There are different kinds of brilliant. Someone can be able to factor primes in their head but be clueless about social interaction. Most people would call them brilliant.

Likewise, someone may understand system security systems, or understand how to manipulate masses of bored people into doing their will, and this doesn't mean that they have the skills to evade those hunting them down.

The people who are brilliant in that manner never get caught, so you never hear about them. They also tend to operate low

Re:

[GmExtremacy]

Indeed. The problem seems to be needless gloating and carelessness.

Re:

[GameboyRMH]

I bet their membership fluctuates by more than 5 people per second during a popular operation.

Re:

[Paracelcus]

This is NOTHING but one more propaganda piece, exploiting the ignorance of the average American for their own election year ends!

Panda Security...

[Anonymous Coward]

They're the scientologist version of anti-virus, aren't they?

Re:

[Em Adespoton]

You've been down-modded, but I believe you are to some degree correct... the last I heard, the Church of Scientology owned a major stake in the company. The company is, however, a legit security company, and has employees/investors who do not belong to the CoS. So the observation is likely not all that pertinent to the discussion.

Considering the historical Anonymous attacks on CoS though, there could be some sort of a tie-in.

Required xkcd

[Petron]

http://xkcd.com/932/ [xkcd.com]

"Anonymous /LulSec drew funny mustaches on a poster put up by Panda Security!!!!"

Owch

[Crasoose]

I would hate to be a member of a company who is supposed to focused on security and got hacked by script kiddies. I would say it isn't good for business but the majority of their customers wouldn't know or care.

Re:

[account_deleted]

Comment removed based on user account deletion

So, some bragging, posturing "hacker"...

[Paracelcus]

So, some bragging, posturing "hacker" wannabe, get's set up by the FBI and is terrorized into "giving up" others, (probably people who, like him wanted to show off) and the Government (like they always do) will exploit this utterly pointless exercise to impress Ma and Pa Kettle of Bug Tussle, TN in a bit of election year propaganda!

Kinda like "Seal team six".

Ah iz votin fer him he caught the Hayakeeruz!
Whuts uh Hayakeeruz?

PR

[ThatsNotPudding]

Panda Security says the intruders only managed to exploit the web server and did not compromise their internal networks.

Given the products and services they sell, of course that's their spin.