A hacker known as “The Jester” claims to have revealed the identity of a LulzSec member who may be the group’s leader. Thirty-year-old Xavier Kaotico, also known as Xavier de Leon or “sabu,” has been outed as the hacker prankster group’s leader, though his role and involvement with LulzSec has not been confirmed. The man allegedly lives or has recently lived in New York City, and is an independant IT consultant specializing in Python programming, Linux development, network security and exploit development. LulzSec, a small group of hackers that has become the focus of the international technology media over the past few weeks, has claimed responsibility for carrying out a number of malicious breaches. Recent LulzSec targets include websites belonging to Sony, Citigroup, the CIA and the U.S. Senate. After a public spat between the two high-profile hacker groups, LulzSec united with “Anonymous Operations” to wage a cyber war against the U.S. government, stating, “Sitting pretty on cargo bays full of corrupt booty, they think it’s acceptable to condition and enslave all vessels in sight. Our Lulz Lizard battle fleet is now declaring immediate and unremitting war on the freedom-snatching moderators of 2011.” LulzSec has not directly addressed the allegation that Kaotico is its leader, though it has posted messages to its Twitter account mocking The Jester, who calls himself a “Hacktivist for good. Obstructing the lines of communication for terrorists, sympathizers, fixers, facilitators, and other general bad guys.” More →
Call it a meeting of minds or call it an unholy matrimony — in either event, the recent rash of high-profile breaches is about to get an adrenaline shot. Hacktivist group Anonymous and a crew of emerging merry hackers known as are joining forces to target the dissemination of government secrets and the defacement of other websites such as those belonging to banks. “As we’re aware, the government and whitehat security terrorists across the world continue to dominate and control our Internet ocean,” LulzSec said in a statement on Monday. “Sitting pretty on cargo bays full of corrupt booty, they think it’s acceptable to condition and enslave all vessels in sight. Our Lulz Lizard battle fleet is now declaring immediate and unremitting war on the freedom-snatching moderators of 2011.” Operation Anti-Security — or AntiSec, as the group has dubbed the mission on Twitter — encourages fellow hackers to “open fire on any government or agency that crosses their path.” Hit the break for Lulz Security’s full statement. More →
BGR has provided extensive coverage of an ongoing saga that has seen numerous digital properties belonging to Sony fall under attack. To date, personal information belonging to well over 100 million Sony customers has been compromised, and nearly 13 million credit card numbers have been stolen. For IT professionals or other tech enthusiasts with weak stomachs, we can understand if reading one story after another about Sony’s security woes might make you a bit queasy. As such, a new site launched recently that has you covered. Hassonybeenhackedthisweek.com answers a single question for those who simply want to cut to the chase: Has Sony been hacked this week? The answer right now, by the way, is “yes.” More →
Sony has released more information regarding a recent breach suffered by one of the many Sony properties that have been targeted by hackers over the past few months. The company said on Wednesday that personal information belonging to 37,500 users has been compromised as a result of a cyberattack on the Sony Pictures website last week. Hackers from a small group known as Lulz Security claimed to have accessed over one million accounts during their breach of the Sony Pictures site, but they were only able to download a small sample of those records due to their limited resources. Sony states that no credit card numbers were stored on the website’s servers, but information including names, genders, addresses, email addresses, phone numbers, birth dates, user account names and passwords was taken during the breach.
UPDATE: Sony Pictures’ letter to customers affected by the breach can now be seen after the break. More →
Hackers from a group called LulzSec announced on Thursday that they had breached sonypictures.com, the website belonging to Sony-owned studio Sony Pictures. The group claims to have compromised personal information belonging to over 1 million users, including user names, passwords, home addresses, dates of birth and other sensitive data. The group also claims to have accessed 75,000 “music codes” and 3.5 million “music coupons.” LulzSec says it employed a simple SQL injection technique to access the data, and that Sony Pictures’ site was not secure and was therefore easy to breach. The hackers did not have the resources to download all of the exposed data, but they say they did obtain samples in order to prove the authenticity of the attack. LulzSec’s statement on the breach is after the break. More →
An unaffiliated group of pro-WikiLeaks hackers calling itself “Anoymous” finds itself short a few member this evening as multiple alleged culprits were arrested on Thursday in the U.K. The BBC reports that five men were arrested in a series of raids, and they are being held in various locations across England. Allegations against the men are described as “recent and ongoing attacks by an online group that calls itself ‘Anonymous’.” The two adults and three teenagers were allegedly involved with a series of DDoS attacks carried out last year, aimed at various websites the group felt stood in opposition of notorious news agency WikiLeaks and its famed leader Julian Assange. Targets included websites belonging to Amazon, Visa, Mastercard and Paypal. This is not the first time arrests have been made in connection with Anonymous’ attacks; two Dutch teenagers allegedly involved with the group were arrested last year, but charges were never formally filed against them. More →
A global, ever-expanding team of hackers called “Anonymous” has announced its next target in a series of cyberattacks that have taken down multiple websites over the past few days. Among its targets were the websites of both Visa and Mastercard following news that the institutions would cease delivery of funds that had been donated to WikiLeaks. Using Twitter to announce the attack, the group is preparing to take down Amazon.com, presumably due to the company’s abrupt cancellation of its hosting agreement with WikiLeaks after being pressured by the Department of Homeland Security. The attack on Amazon.com will begin at 11:00am Eastern.