Cyberactivists warned of arrest

Joseph Menn in San Francisco, 0:36, Saturday 5 February 2011

Cyberactivists warned of arrest - Yahoo! UK & Ireland Finance

An international investigation into cyberactivists who attacked businesses hostile to WikiLeaks is likely to yield arrests of senior members of the group after they left clues to their real identities on Facebook and in other electronic communications, it is claimed.

Supporters of the internet group - known as Anonymous, which gained wide attention after it co-ordinated attacks that crashed the websites of some businesses that had broken ties with WikiLeaks - have continued to ambush high-profile targets, recently forcing government sites in Egypt and Tunisia to close.

However, a senior US member of Anonymous, using the online nickname Owen and evidently living in New York (Xetra: A0DKRK - news) , appears to be one of those targeted in recent legal investigations, according to online communications uncovered by a private security researcher.

A co-founder of Anonymous, who uses the nickname Q after the character in James Bond, has been seeking replacements for Owen and others who have had to curtail activities, said researcher Aaron Barr, head of security services firm HBGary Federal.

Mr Barr said Q and other key figures lived in California and that the hierarchy was fairly clear, with other senior members in the UK, Germany, Netherlands, Italy and Australia.

Of a few hundred participants in operations, only about 30 are steadily active, with 10 people who "are the most senior and co-ordinate and manage most of the decisions", Mr Barr told the Financial Times. That team works together in private internet relay chat sessions, through e-mail and in Facebook groups. Mr Barr said he had collected information on the core leaders, including many of their real names, and that they could be arrested if law enforcement had the same data.

Many other investigators have also been monitoring the public internet chats of Anonymous, and agree that a few seasoned veterans of the group appear to be steering much of its actions.

But he does not plan to give specifics to police, who would face hurdles in using some of the methods he employed, including creating false Facebook profiles.

In their main online chat rooms, which are accessible to anyone, Anonymous members have affected an air of bravado, apparently believing that if enough ordinary computer users download the tools to make their cyberattacks on websites simultaneously, only a small minority will face prosecution.

Key Anonymous figures are fretting that they will soon face charges, which can bring sentences as long as 10 years, it is claimed.

Officials last month said they had arrested five suspected UK members of Anonymous in the UK while 40 court-authorised searches in the US were carried out, with few details.

Anonymous presents itself as a loose collective and polls its members about which websites should be hit with what are known as denial-of-service attacks.

Ordinary members take charge of specific projects, such as Twitter postings on Tunisia or closed Facebook chats on strategy for harassing the Egyptian government's online presence.

Mr Barr said he penetrated Anonymous as part of a project to demonstrate the security risks to organisations from social media and networking.He is presenting his research later this month at a conference in San Francisco.

HBGary Federal is part-owned by HBGary, run by Greg Hoglund, a respected security researcher based in California.

The FBI declined to comment on the research or the timing of arrests.

Using LinkedIn, Classmates.com, Facebook and other sites, Mr Barr also burrowed deep enough into a US military group and a US nuclear plant that he could trick workers there to click on web links that, if they had been malicious, could have installed spying software on their computers. Such "social engineering" hacks are a major vulnerability for companies targeted in industrial espionage.

The Anonymous effort was similar but included such tricks as comparing the times that members logged on to Facebook and to Internet Relay Chat to make educated guesses as to which electronic identities belonged to the same person.

__________________
"Patriotism means being loyal to your country all the time and to its government when it deserves it."-- Mark Twain

"Inter arma silent Musae"--when the weapons speak, the muses fall silent.

An't nanum hearm deth, doth hwaet ye willath.

It is forbidden to kill; therefore all murderers are punished
unless they kill in large numbers and to the sound of trumpets. -Voltaire

Economic Left/Right: -3.88
Authoritarian/Libertarian: -4.36

Did they really not expect this?

Anonymous pwns security firm that probed its membership ? The Register

Quote:

The Anonymous hacking collective took revenge on a security firm that had investigated its membership on Sunday. HBGary Federal has been seeking to uncloak the identities of senior members of Anonymous involved in attacks against financial services firms, such as PayPal and Mastercard, that had suspended accounts run by WikiLeaks. The security consultancy had infiltrated IRC chat sessions and Facebook groups used by core members of the Anonymous collective. HBGary Federal wanted to present its research at an upcoming security conference. In response, Anonymous did a number on HBGary by hacking into its email system and uploading 60,000 emails onto file-sharing networks. Anonymous also defaced HBGary's website with an image explaining their motives as well as taking over the Twitter feed of HBGary's chief exec, Aaron Barr, to tweet abuse as well as supposed details of his home address and social security number. LinkedIn accounts of other senior HBGary execs were also targeted for attack. Anonymous also posted HBGary's research of the hacking collective, claiming that the names and addresses of Anonymous members gleaned by the firm are largely bogus. The techniques and methods employed during the attack remain unclear. The assault is far more sophisticated than than usual denial of service attacks deployed by Anonymous volunteers against organisations the earn its displeasure, such as entertainment industry firm-hassling file-sharing sites and the Church of Scientology as well as as those refusing to cash WikiLeaks' cheques. The assault on HBGary follows the same pattern as a previous assault against ACS:Law, a controversial legal firm that ran a business sending threatening letters to alleged file-sharers. HBGary's website had been replaced by an "under construction" holding page at the time of writing. Rootkit.com, a research site maintained by HBGary, and also hit by the attack remains unavailable. ®

__________________
Standard disclaimer: the disgusting statements contained in this post are the views of the poster, and unless specified do not represent the views of the moderators or the site's owners.

Awesome! It's good to see that the good guys can fight the Empire back...

__________________
Unless otherwise specified, I am posting as a regular poster. When I will act as a mod, I'll make sure you're in no doubt.