Ultimate hack: LulzSec may have duped British authorities into arresting innocent man

By on July 28, 2011 at 12:11 PM.

Ultimate hack: LulzSec may have duped British authorities into arresting innocent man

Following reports on Wednesday that British police had arrested a 19-year-old suspect thought to be the spokesperson of notorious hacker group “LulzSec,” new information suggests authorities may have been duped into arresting an innocent man. According to DailyTech, a hacker by the name of “The Jester” has discovered and published chat logs that suggest “Topiary,” the hacker reportedly arrested by authorities on Wednesday, is still at large. According to the exposed chat, Sweden-born Daniel Ackerman Sandberg — the alleged real LulzSec spokesperson — recently assumed the online identity of another man in an effort to mislead authorities. Sandberg, who has reportedly changed his name numerous times, is also said to have been caught on video speaking Swedish, further suggesting that the Scottish man arrested Wednesday by British authorities was not in fact LulzSec’s spokesperson. The full alleged chat logs between Sandberg and an anonymous second party can be read below (emphasis applied by DailyTech). More →

43 Comments

‘Anonymous’ hackers to FBI: There is nothing you can do to stop us

By on July 21, 2011 at 1:03 PM.

‘Anonymous’ hackers to FBI: There is nothing you can do to stop us

Global hacker collective “Anonymous Operations” together with “Lulz Security” on Thursday issued a statement to the FBI and other international authorities. The release is a response to statements made by FBI Director Steve Chabinsky tied to the recent arrest of 14 individuals with suspected ties to the hacker group. “We want to send a message that chaos on the Internet is unacceptable, Chabinsky told NPR in a recent interview. “[Even if] hackers can be believed to have social causes, it’s entirely unacceptable to break into websites and commit unlawful acts.” Anonymous did not mince words in its response. “These governments and corporations are our enemy. And we will continue to fight them, with all methods we have at our disposal, and that certainly includes breaking into their websites and exposing their lies,” an unnamed Anonymous representative said in a statement. “We are not scared any more. Your threats to arrest us are meaningless tous as you cannot arrest an idea. Any attempt to do so will make your citizens more angry until they will roar in one gigantic choir. It is our mission to help these people and there is nothing – absolutely nothing – you can possibly to do make us stop.” Anonymous’ full statement follows below. More →

107 Comments

Apple becomes latest ‘Anonymous’ hacker target

By on July 4, 2011 at 11:20 AM.

Apple becomes latest ‘Anonymous’ hacker target

Notorious hacker collective “Anonymous Operations” on Sunday published data it claims to have obtained by breaching a server belonging to Apple. The data, which consisted of 27 usernames and passwords, was allegedly taken during from surveys stored on an Apple server. Though the group said on one of its Twitter accounts that it is “busy elsewhere,” and therefore will seemingly not be targeting Apple again in the near future, it claims to have exploited a security flaw common to several companies when it gained access to Apple’s server. Anonymous said the breach was part of its AntiSec movement, short for anti-security, which is aimed at “exposing corporate and government data and humiliating security firms.” More →

36 Comments

LulzSec’s last lulz: Malware for all those who downloaded hackers’ final plunder

By on June 28, 2011 at 12:30 PM.

LulzSec’s last lulz: Malware for all those who downloaded hackers’ final plunder

The small group of hackers known as Lulz Security, or simply “LulzSec,” would never disband without one final round of fun. BGR reported on Monday that the group’s reign of terror was coming to an end after 50 lul-filled days. During that period of time, LulzSec released data stolen in a series of online breaches with targets ranging from Sony to the U.S. Government. In its coup de grâce, LulzSec released a stash of stolen data from a variety of targets, including AT&T, Disney and the U.S. Navy. But data obtained through online breaches wasn’t the only thing LulzSec stuffed into the file; a directory named “BootableUSB” also contained a variety of malware including trojans and worms. While “LulzSec” is no more and its notorious Twitter account now sits dormant, members of the well-known hacktivism group “Anonymous Operations” have confirmed that LulzSec is gone in name only — the six LulzSec members have been absorbed by Anonymous, according to the group’s official Twitter feed. More →

33 Comments

LulzSec says ‘bon voyage’ after 50-day hack fest

By on June 27, 2011 at 3:20 PM.

LulzSec says ‘bon voyage’ after 50-day hack fest

The now infamous hacking team LulzSec recently announced that it was swabbing the decks of its “Lulz Boat” and closing up shop — for now. The group made its name after attacking a number of high visability targets recently, including Sony, the CIA’s website, and the U.S. Senate. It’s unclear if the group’s decision was made after its leader and chat logs were exposed, but the group makes a convincing argument that a 50-day hack-fest was planned the entire time. In its final press release, LulzSec said “Our planned 50 day cruise has expired, and we must now sail into the distance, leaving behind – we hope – inspiration, fear, denial, happiness, approval, disapproval, mockery, embarrassment, thoughtfulness, jealousy, hate, even love.” The letter, at times a bit awkward and out of character for the group, called on hackers to continue the fight against poor security in support of freedom of information. LulzSec — short for “Lulz Security” — confirmed it had a crew of six members and thanks its supporters, but we have a feeling we’ll hear more from the group in the future. Read on for the full release. More →

19 Comments

Hacker claims to reveal identity of LulzSec leader

By on June 24, 2011 at 10:01 AM.

Hacker claims to reveal identity of LulzSec leader

A hacker known as “The Jester” claims to have revealed the identity of a LulzSec member who may be the group’s leader. Thirty-year-old Xavier Kaotico, also known as Xavier de Leon or “sabu,” has been outed as the hacker prankster group’s leader, though his role and involvement with LulzSec has not been confirmed. The man allegedly lives or has recently lived in New York City, and is an independant IT consultant specializing in Python programming, Linux development, network security and exploit development. LulzSec, a small group of hackers that has become the focus of the international technology media over the past few weeks, has claimed responsibility for carrying out a number of malicious breaches. Recent LulzSec targets include websites belonging to Sony, Citigroup, the CIA and the U.S. Senate. After a public spat between the two high-profile hacker groups, LulzSec united with “Anonymous Operations” to wage a cyber war against the U.S. government, stating, “Sitting pretty on cargo bays full of corrupt booty, they think it’s acceptable to condition and enslave all vessels in sight. Our Lulz Lizard battle fleet is now declaring immediate and unremitting war on the freedom-snatching moderators of 2011.” LulzSec has not directly addressed the allegation that Kaotico is its leader, though it has posted messages to its Twitter account mocking The Jester, who calls himself a “Hacktivist for good. Obstructing the lines of communication for terrorists, sympathizers, fixers, facilitators, and other general bad guys.” More →

29 Comments

LulzSec hacked, exposed by rival hackers [updated]

By on June 22, 2011 at 11:31 AM.

LulzSec hacked, exposed by rival hackers [updated]

LulzSec isn’t making any friends in the U.S. government or within any of the numerous companies that own the websites it has hacked, and apparently the group has managed to rub a few other hackers the wrong way as well. A website said to belong to a Dutch member of the hacker group LulzSec has reportedly been hacked by another group known as “TeaMp0isoN.” The site has since been taken down, but not before a 17-year-old TeaMp0isoN member was able to infiltrate it and post a statement. “Stop telling yourself that u are hackers, putting a ip into a irc is NOT hacking nor is using pre-made tools and scripts to grab databases,” the statement read. “You do not represent the anti-sec movement, u are not allowed to greet underground groups like zf0, ab, h0n0, el8 like your member ‘AnonSabu’ was doing, you will never be apart of the underground scene, if anyone thinks you are underground and can actually hack they have no idea about what happens in the underground scene.” The hacker went on to state that he plans to expose pictures, addresses, passwords, IP addresses and phone numbers belonging to members of LulzSec. TeaMp0isoN’s full statement follows below.

UPDATE: The Dutch owner of the aforementioned hacked website, Sven Swootleg, denies any involvement with LulzSec. His full statement now be found below, beneath TeaMp0isoN’s statement. More →

72 Comments

LulzSec and Anonymous unite to wage cyber war on U.S. government

By on June 20, 2011 at 12:53 PM.

LulzSec and Anonymous unite to wage cyber war on U.S. government

Call it a meeting of minds or call it an unholy matrimony — in either event, the recent rash of high-profile breaches is about to get an adrenaline shot. Hacktivist group Anonymous and a crew of emerging merry hackers known as are joining forces to target the dissemination of government secrets and the defacement of other websites such as those belonging to banks. “As we’re aware, the government and whitehat security terrorists across the world continue to dominate and control our Internet ocean,” LulzSec said in a statement on Monday. “Sitting pretty on cargo bays full of corrupt booty, they think it’s acceptable to condition and enslave all vessels in sight. Our Lulz Lizard battle fleet is now declaring immediate and unremitting war on the freedom-snatching moderators of 2011.” Operation Anti-Security — or AntiSec, as the group has dubbed the mission on Twitter — encourages fellow hackers to “open fire on any government or agency that crosses their path.” Hit the break for Lulz Security’s full statement. More →

157 Comments

Sony confirms Sony Pictures breach, says 37,500 users affected [updated]

By on June 8, 2011 at 1:15 PM.

Sony confirms Sony Pictures breach, says 37,500 users affected [updated]

Sony has released more information regarding a recent breach suffered by one of the many Sony properties that have been targeted by hackers over the past few months. The company said on Wednesday that personal information belonging to 37,500 users has been compromised as a result of a cyberattack on the Sony Pictures website last week. Hackers from a small group known as Lulz Security claimed to have accessed over one million accounts during their breach of the Sony Pictures site, but they were only able to download a small sample of those records due to their limited resources. Sony states that no credit card numbers were stored on the website’s servers, but information including names, genders, addresses, email addresses, phone numbers, birth dates, user account names and passwords was taken during the breach.

UPDATE: Sony Pictures’ letter to customers affected by the breach can now be seen after the break. More →

13 Comments