Hackers hit International Atomic Energy Agency server

Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Firearms, Weapons & Personal Safety, National security, Terrorism, Cyber Terrorism & Related Crimes, Social Media, Technology & Digital Security Comments Off

Dec 212012

Hackers hit International Atomic Energy Agency server

Hacker group gets email addresses, call on nuclear experts to petition IAEA to investigate Israel’s nuclear activities

Computer World
by Lucian Constantin
November 28, 2012

IDG News Service –

A group of hackers leaked email contact information of experts working with the International Atomic Energy Agency (IAEA) after breaking into one of the agency’s servers.

The group published a list of 167 email addresses along with its manifesto on Sunday in a post on Pastebin.

“Some contact details related to experts working with the IAEA were posted on a hacker site on 25 November 2012,” IAEA spokeswoman Gill Tudor said Wednesday in an emailed statement. “The IAEA deeply regrets this publication of information stolen from an old server that was shut down some time ago. In fact, measures had already been taken to address concern over possible vulnerability in this server.”

The hacker group calls itself Parastoo and wants the IAEA to investigate Israel’s nuclear activities at the Negev Nuclear Research Center near Dimona, an Israeli city located in the Negev desert. “Israel owns a practical nuclear arsenal tied to a growing military body and it is not a member of internationally respected nuclear, biochemical and chemical agreements,” the group said.

Israel has long had a policy of nondisclosure regarding its nuclear military capabilities and has never signed the international Treaty on the Non-Proliferation of Nuclear Weapons (NPT).

The experts whose email addresses were leaked should sign a petition demanding that IAEA investigate the activities at Dimona, the hacker group said, claiming that it has evidence of “beyond-harmful operations” taking place at the site.

Parastoo threatened to published information on the whereabouts of every single individual on the list together with their personal and professional details, saying that all of them could be considered responsible if an accident was to happen at Dimona.

“The IAEA’s technical and security teams are continuing to analyse the situation and do everything possible to help ensure that no further information is vulnerable,” Tudor said. “The Agency treats information security, including cybersecurity, as a top priority and takes all possible steps to ensure its computer systems and data are fully protected.”

The IAEA is an international organization that promotes the safe and peaceful use of nuclear energy and discourages the proliferation of nuclear weapons. The agency reports issues of non-compliance by states to the United Nations General Assembly and Security Council.

Direct Link: http://www.computerworld.com/s/article/9234084/Hackers_hit_International_Atomic_Energy_Agency_server?taxonomyId=82

Pastebin to hunt for hacker pastes, Anonymous cries censorship

Apr 052012

Pastebin to hunt for hacker pastes, Anonymous cries censorship

ZDNET

By Emil Protalinski

April 4, 2012

Summary: Pastebin is looking for more manpower to monitor the site’s content for sensitive information, such as what hackers dump on the site. The hacktivist Anonymous group is calling the move censorship.

28 year-old Jeroen Vader, the owner of Pastebin, says he plans to hire more staff to help remove “sensitive information” posted to the site. Pastebin, which has over 200,000 members as of this weekend and 17 million unique visitors per month, is the de facto choice for hackers who want to publicly post data they have stolen from their targets. Hacker pastes ranges from something simple, like a list of sites that have been hacked, to very detailed information, including administrator credentials for website servers, credit card numbers, phone numbers, e-mail addresses with corresponding passwords, and even home addresses.

Pastebin currently relies on an abuse report system, which gets 1,200 warnings a day. It’s not keeping up, so it’s about to get some more manpower, according to a BBC interview with Vader:

I am looking to hire some extra people soon to monitor more of the website’s content, not just the items that are reported. Hopefully this will increase the speed in which we can remove sensitive information. This will give us more time to look at trending items in detail if they haven’t been reported yet. Often articles contain a lot of information, and part of that can be a person’s details. This does not mean straight away that it should be removed. Reading all those items, and determining which ones are hurtful, and which ones aren’t, requires a lot of time. That’s why we rely on the abuse report system at the moment. But there are plans to improve on this.

This has led to many speculating that Pastebin is specifically targeting the hacktivist groups Anonymous and LulzSec with its new initiative. The hacktivist groups uses Pastebin quite frequently; for example, the Anonymous China hacks this past week used Pastebin multiple times for multiple leaks.

Even if Anonymous or LulzSec decided to attack Pastebin in retaliation, it wouldn’t be a huge blow to the site. Every single day for the last three months, Pastebin has been the target of a Distributed Denial of Service (DDoS) attack. Vader says the longest continuous attack, in February, went on for more than 48 hours. He said none of the attacks have been claimed, but he has heard that many hackers like to test their DDOS skills on Pastebin.

Whether Pastebin will become a target isn’t known, but it’s clear Anonymous isn’t very pleased with what’s happening. The YourAnonNews Twitter account summarizes the group’s stance quite succinctly:

Srsly Pastebin, f*** you – @Pastebin to hire staff to tackle hackers’ ’sensitive’ posts | http://bit.ly/HixoFQ All aboard the Censor Ship!

For its part, Pastebin is reportedly trying to calm everyone down. Here’s what a Pastebin admin reportedly posted on the Anonymous Central Tumblr:

Hey guys, I’m from Pastebin.com and would like to speak to someone from @anonops via email. Could someone email admin@pastebin.com please? Would like to set some stuff straight, as a lot of news sites are reporting false stories now about how Pastebin is against Anonymous all the sudden.

So far, all the comments are asking whoever made the post to present his case publicly. After all, it’s the Anonymous way.

Hacktivists Crack United Nations, Publish User Data

Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), National security, Terrorism, Cyber Terrorism & Related Crimes, Social Media, Technology & Digital Security No Responses »

Dec 122011

Hacktivists Crack United Nations, Publish User Data

TeamPoison might have broken into UN Development Program website
Dark Reading
By Tim Wilson
Dec 01, 2011

A hacktivist group called TeamPoison (TeaMP0isoN) has leaked more than 100 usernames, email addresses, and passwords belonging to the United Nations, claiming that the UN is guilty of corruption.

The user data appears to belong to individuals at the United Nations Development Programme (UNDP), Organisation for Economic Co-operation and Development (OECD), UNICEF, World Health Organisation (WHO), and other groups, according to news reports.

The gang noted, when publishing its stash on PasteBin, that some of the user IDs appeared to have a blank password.

Reports indicate that the hackers were able to take advantage of a vulnerability on the United Nations Development Program website to extract the IDs, email address, and passwords of users. The UN told reporters that the information obtained was from an old server and contains no current or valuable information. The accounts obtained are no longer active, the UN says.

The UN is not saying exactly how the attack occurred. “The question now is how?,” the hacktivist group said. “We will let the so called ‘security experts’ over at the UN figure that out. Have a nice day.”

TeamPoison recently announced that it is joining forces with Anonymous on a new initiative dubbed “Operation Robin Hood,” targeting banks and financial institutions.

Direct Link: http://www.darkreading.com/authentication/167901072/security/attacks-breaches/232200523/hacktivists-crack-united-nations-publish-user-data.html

14 Enterprise Security Tips From Anonymous Hacker & Former Anonymous member “SparkyBlaze” advises companies on how to avoid massive data breaches.

Articles of Interest, Crimes & Criminal Activity (Organized Crime, Narcotics, Predators, Cyber Crime, Cyber Stalking, UnSolved), Social Media, Technology & Digital Security No Responses »

Nov 232011

14 Enterprise Security Tips From Anonymous Hacker
Former Anonymous member “SparkyBlaze” advises companies on how to avoid massive data breaches.
InformationWeek
By Mathew J. Schwartz
August 31, 2011

Want to avoid large-scale data breaches of the type served up by hacking group Anonymous, and its LulzSec and AntiSec offshoots? Start by paying attention to the security basics, including hiring good people and training employees to be security-savvy.

“Information security is a mess. … Companies don’t want to spend the time/money on computer security because they don’t think it matters,” said ex-Anonymous hacker “SparkyBlaze,” in an exclusive interview with Cisco’s Jason Lackey, published on Cisco’s website Tuesday.

Accordingly, what’s the best way for businesses to improve the effectiveness of their information security efforts? SparkyBlaze offered 14 tips, ranging from using “defense-in-depth” and “a strict information security policy”; regularly contracting with an outside firm to audit corporate security; and hiring system administrators “who understand security.” Also encrypt data–”something like AE-256,” he said–and “keep an eye on what information you are letting out into the public domain.”

Other best practices: use an intrusion prevention system or intrustion detection system to detect unusual network activity. Employ “good physical security” too, he said, to ensure no one routes around your information security measures by simply walking through the front door. Finally, pay attention to employees’ security habits and keep them briefed on the threat of social engineering attacks, since all it takes is one person opening a malicious attachment to trigger a data breach of RSA-scale proportions.

While SparkyBlaze’s back-to-basics guidance isn’t new, it bears repeating given the number of data breaches and releases executed by hacktivist groups in recent months. According to security experts, these attacks aren’t necessarily highly sophisticated, and most don’t make use of so-called advanced persistent threats. Rather, attackers often exploit common vulnerabilities or misconfigurations in Web applications, just as they’ve done for years.

SparkyBlaze defected from Anonymous earlier this month, saying via a Pastebin post that he was “fed up with Anon putting people’s data online and then claiming to be the big heroes.” As that suggests, there’s no clear and easy definition of what constitutes “hacktivism.” Even so, the “scope creep” in the type of data collected and released by Anonymous and its offshoots is evidently turning some people away from the collective.

“I love hacking and I believe in free speech and anti-censorship, so putting both together was easy for me. I feel that it is ok if you are attacking the governments. Getting files and giving them to WikiLeaks, that sort of thing, that does hurt governments,” said SparkyBlaze to Cisco’s Lackey.

But in his Pastebin post, SparkyBlaze said that AntiSec and LulzSec had increasingly been operating against the supposed mission statement of Anonymous, which was ostensibly formed to keep governments accountable. “AntiSec has released gig after gig of innocent people’s information. For what? What did they do? Does Anon have the right to remove the anonymity of innocent people? They are always talking about people’s right to remain anonymous so why are they removing that right?”

On a related note, the raison d’etre of Anonymous–WikiLeaks–appears to have lately suffered its own data breach, or at least loss of data control. On Monday, German weekly news magazine Der Spiegel reported that a file posted by WikiLeaks supporters to the Internet included concealed, password-protected, and unexpurgated versions of the 251,000 U.S. State Department cables that WikiLeaks released–with many sources omitted–in November 2010.

Through a somewhat circuitous sequence of events, possibly involving personnel disagreements inside WikiLeaks, the existence of a 1.73-GB “cables.csv” file, which contains the uncensored cables and which is protected by a password, became publicly known. Furthermore, thanks to an “external contact” of WikiLeaks, according to Der Spiegel, the password was also publicly disclosed, enabling the file to be unlocked.

But in a statement on Twitter, WikiLeaks disputed responsibility for the leak: “There has been no ‘leak at WikiLeaks’. The issue relates to a mainstream media partner and a malicious individual.” WikiLeaks, however, didn’t name either.

Direct Link: http://www.informationweek.com/news/security/intrusion-prevention/231600561?itc=edit_in_body_cross