A cyber-attack of various government websites by groups of hackers is allegedly underway Tuesday morning, as was warned using social media. A pastebin message begins with, “Let’s hurt them where it’s hurts the most” and the group promises, “Anonymous will make sure that’s this May 7th will be a day to remember” in what the group titles as, #OpUSA. The high profile list of targets includes, Bank of America, Citibank, White House websites, the FBI, among others.

Another message seemingly from a member of one of the hacktivist collectives known as Anonymous states “America you have committed multiple war crimes in Iraq, Afghanistan, Pakistan, and recently you have committed war crimes in your own country. You have killed hundreds of innocent children and families with drones, guns, and now bombs. America you have hit thousands of people where it hurts them, now it is our time for our Lulz. For this you shall pay. Obama you have seen the over three billion dollars worth of damage we have done to Israel in operation Israel. It hasn’t even been a few weeks and the anonymous collective has gotten stronger since then.”

As federal government agencies brace themselves for a large-scale attack, a "Hacker's News Bulletin" is linked on Twitter that claims to be a running "List of Websites,Email Accounts affected under #OpUSA; Updating list as defaced,hacked or down."

"A group of mostly Middle East- and North Africa-based criminal hackers are preparing to launch a cyber attack campaign next week known as “OpUSA” against websites of high-profile US government agencies, financial institutions, and commercial entities," reports security blog Krebs on Security. "But security experts remain undecided on whether this latest round of promised attacks will amount to anything more than a public nuisance."

Last month, Anonymous launched #OpIsrael, which promised to “wipe Israel off the internet,” and well, that turned out to be a big #OpFail.

Artist Molly Crabapple talks about her new paintings, entitled "The Shell Game" and her documentary drawings of global turmoil in 2011, including the rise of Occupy Wall Street, Anonymous hackers, the health insurance crisis, the Tunisian Revolution, protests in Greece, and the Spanish M15 movement.

Crabapple's paintings portray a darkly humorous year in cartoonish figures, and just ended their first showing in New York City.

While "Shell Game" bursts with depictions of corruption and violence, for Crabapple, the past few years have been a mix of birth amid destruction. "Yes, it was awful, but it was also magic, she told Wired in an interview. "It was the magic of people speaking to each other, waking up, helping each other. For every person beaten up, everyone arrested, it was also a year of fierce aliveness."

Molly has generously released "The Shell Game" art on Creative Commons for non-commercial use only and attribution is mandatory.

Twelve celebrities and politicians are victims of a hacker who posted information about their finances online, including their Social Security numbers, credit-card information, and mortgage amounts. Michelle Obama, Jay-Z, Beyoncé, Hillary Clinton, Kim Kardashian, Paris Hilton, Mel Gibson, Ashton Kutcher, and Joe Biden are among those who were hacked.

NBC News Los Angeles:

The site, which bore an internet suffix originally assigned to the Soviet Union, remained active Monday evening and had garnered nearly 70,000 hits, according to a ticker on the homepage.

It did not state how the information was obtained or why the 17 people targeted on the site were selected, describing the records only as "secret files."
...
Several of the pages, to which we are chosing not to link, featured unflattering pictures of the celebrities or government officials whose information was posted.

While government officials often have to disclose details on their finances – and celebrity divorces sometimes feature public financial data – the information posted online exceeds those disclosures.

The LAPD and FBI are both investigating the incident, according to TMZ.

China's Army might be training the country's next crop of cyberhackers. An investigation by Mandiant, a U.S.-based computer security firm, found that many of the attacks on American corporations and government agencies are coming from a clandestine People’s Liberation Army base on the outskirts of Shanghai. The report found that many members of China's most sophisticated hacking groups are working from around that area, and it's likely that they are run by army officers or contract workers.

NYT:

The building off Datong Road, surrounded by restaurants, massage parlors and a wine importer, is the headquarters of P.L.A. Unit 61398. A growing body of digital forensic evidence — confirmed by American intelligence officials who say they have tapped into the activity of the army unit for years — leaves little doubt that an overwhelming percentage of the attacks on American corporations, organizations and government agencies originate in and around the white tower.

An unusually detailed 60-page study, to be released Tuesday by Mandiant, an American computer security firm, tracks for the first time individual members of the most sophisticated of the Chinese hacking groups — known to many of its victims in the United States as “Comment Crew” or “Shanghai Group” — to the doorstep of the military unit’s headquarters. The firm was not able to place the hackers inside the 12-story building, but makes a case there is no other plausible explanation for why so many attacks come out of one comparatively small area.

“Either they are coming from inside Unit 61398,” said Kevin Mandia, the founder and chief executive of Mandiant, in an interview last week, “or the people who run the most-controlled, most-monitored Internet networks in the world are clueless about thousands of people generating attacks from this one neighborhood.”

Other security firms that have tracked “Comment Crew” say they also believe the group is state-sponsored, and a recent classified National Intelligence, issued as a consensus document for all 16 of the United States intelligence agencies, makes a strong case that many of these hacking groups are either run by army officers or are contractors working for commands like Unit 61398, according to officials with knowledge of its classified content.

Continue reading »

Some of Bank of America's 40 million customers "were unable to access their online banking accounts, mobile payment systems or the company’s telephone call centers on Friday," reports the NYT. An internal breakdown, rather than a hacking attack, is suspected, but the bank continues to investigate.

More from Reuters:

Since last fall, U.S. bank websites have faced a blitz of "denial of service" attacks in which hacker activists disrupt operations by flooding them with information.

Customers logging into Bank of America's website on Friday received a message that said the site was "temporarily unavailable." Some customers took to Twitter to vent their frustrations.

Until...Twitter came under attack!

In a blog post titled "Keeping Our Users Secure" from Bob Lord, Twitter's Director of Information Security:

As you may have read, there’s been a recent uptick in large-scale security attacks aimed at U.S. technology and media companies. Within the last two weeks, the New York Times and Wall Street Journal have chronicled breaches of their systems, and Apple and Mozilla have turned off Java by default in their browsers.

This week, we detected unusual access patterns that led to us identifying unauthorized access attempts to Twitter user data. We discovered one live attack and were able to shut it down in process moments later. However, our investigation has thus far indicated that the attackers may have had access to limited user information – usernames, email addresses, session tokens and encrypted/salted versions of passwords – for approximately 250,000 users.
...
We also echo the advisory from the U.S. Department of Homeland Security and security experts to encourage users to disable Java on their computers in their browsers. For instructions on how to disable Java, read this recent Slate article.

This attack was not the work of amateurs, and we do not believe it was an isolated incident. The attackers were extremely sophisticated, and we believe other companies and organizations have also been recently similarly attacked. For that reason we felt that it was important to publicize this attack while we still gather information, and we are helping government and federal law enforcement in their effort to find and prosecute these attackers to make the Internet safer for all users.

Since an October 25th story exposing the lucrative business dealings of Chinese Prime Minister Wen Jaiabo, the New York Times has been battling constant attacks from the country's hackers. The Times has been fending off the attacks for four months with the help of security experts, who say the methods used by attackers are similar to those of the Chinese military in the past. They targeted the South Asia burea chief along with Shanghai bureau chief, David Barboza, who wrote the report about Wen's family.“Computer security experts found no evidence that sensitive e-mails or files from the reporting of our articles about the Wen family were accessed, downloaded or copied,” said executive editor Jill Abramson.

NYT:

After The Times learned of warnings from Chinese government officials that its investigation of the wealth of Mr. Wen’s relatives would “have consequences,” executives on Oct. 24 asked AT&T, which monitors The Times’s computer network, to watch for unusual activity.

On Oct. 25, the day the article was published online, AT&T informed The Times that it had noticed behavior that was consistent with other attacks believed to have been perpetrated by the Chinese military.

The Times notified and voluntarily briefed the Federal Bureau of Investigation on the attacks and then — not initially recognizing the extent of the infiltration of its computers — worked with AT&T to track the attackers even as it tried to eliminate them from its systems.

But on Nov. 7, when it became clear that attackers were still inside its systems despite efforts to expel them, The Times hired Mandiant, which specializes in responding to security breaches. Since learning of the attacks, The Times — first with AT&T and then with Mandiant — has monitored attackers as they have moved around its systems.

Hacker teams regularly began work, for the most part, at 8 a.m. Beijing time. Usually they continued for a standard work day, but sometimes the hacking persisted until midnight. Occasionally, the attacks stopped for two-week periods, Mandiant said, though the reason was not clear.

Investigators still do not know how hackers initially broke into The Times’s systems. They suspect the hackers used a so-called spear-phishing attack, in which they send e-mails to employees that contain malicious links or attachments. All it takes is one click on the e-mail by an employee for hackers to install “remote access tools” — or RATs. Those tools can siphon off oceans of data — passwords, keystrokes, screen images, documents and, in some cases, recordings from computers’ microphones and Web cameras — and send the information back to the attackers’ Web servers.

Continue reading »

Anonymous - We Are Legion - The Story of the Hacktivists (2012) from Anon Best Videoes on Vimeo.

In recent years, the radical online community known as Anonymous has been associated with attacks or “raids” on hundreds of targets. Angered by issues as diverse as copyright abuse and police brutality, they’ve taken on child pornographers, the Bay Area Rapid Transit system and even forced a standoff with Mexican drug cartels. They’ve hit corporate targets like Sony, cyber-security firms like HBGary Federal and would-be web controllers like the Church of Scientology.

They shut down Mastercard, Visa and Paypal after those groups froze financial transactions to Wikileaks. Along with other hacktivist groups like Telecomix, they’ve launched cyber attacks against foreign governments in support of the Arab Spring. They served as tech support for the Occupy movement and have put their mark on countless uprisings around the world. One participant described their protests as “ultra coordinated motherf*ckery.”

So who is Anonymous?

They’ve been called criminals, “hackers on steroids” and even terrorists. But the vast majority of those who identify as Anonymous don’t break the law. They see themselves as activists and protectors of free speech, and tend to rise up most powerfully when they perceive a threat to internet freedom or personal privacy. Whether you are a soccer mom or a member of Congress, you live in an electronic landscape that has exploded with largely unchecked intrusion and surveillance. You are tracked by government databases while corporate advertisers are looking to buy your personal data for pennies. In this landscape, the existence of the collective internet culture called Anonymous makes the case for anonymity.

Using tools of disruption and spectacle, they have also become the face of dissent for a variety of human rights and information freedom groups around the globe. They are a legion of loud but largely masked geeks, hackers, pranksters and outraged citizens who have unwittingly redefined civil disobedience for the digital age, and found themselves in the middle of one of the most important battles of our time.

WE ARE LEGION: The Story of the Hacktivists, from Director, Writer, Producer Brian Knappenberger, takes us inside the complex culture and history of Anonymous. The film explores early hacktivist groups like Cult of the Dead Cow and Electronic Disturbance Theater, and then moves to Anonymous’ own raucous and unruly beginnings on the website 4Chan.

Through interviews with current members – some recently returned from prison, others still awaiting trial – as well as writers, academics and major players in various “raids,” WE ARE LEGION traces the collective’s breathtaking evolution from merry pranksters to a full-blown, global movement, one armed with new weapons of civil disobedience for an online world.

Does Cybercrime Really Cost $1 Trillion?

by Peter Maass and Megha Rajagopalan ProPublica, Aug. 1, 2012

Gen. Keith Alexander is the director of the National Security Agency and oversees U.S. Cyber Command, which means he leads the government's effort to protect America from cyberattacks. Due to the secretive nature of his job, he maintains a relatively low profile, so when he does speak, people listen closely. On July 9, Alexander addressed a crowded room at the American Enterprise Institute in Washington, D.C., and though he started with a few jokes 2014 his mother said he had a face for radio, behind every general is a stunned father-in-law 2014 he soon got down to business.

Alexander warned that cyberattacks are causing "the greatest transfer of wealth in history," and he cited statistics from, among other sources, Symantec Corp. and McAfee Inc., which both sell software to protect computers from hackers. Crediting Symantec, he said the theft of intellectual property costs American companies $250 billion a year. He also mentioned a McAfee estimate that the global cost of cybercrime is $1 trillion. "That's our future disappearing in front of us," he said, urging Congress to enact legislation to improve America's cyberdefenses.

These estimates have been cited on many occasions by government officials, who portray them as evidence of the threat against America. They are hardly the only cyberstatistics used by officials, but they are recurring ones that get a lot of attention. In his first major cybersecurity speech in 2009, President Obama prominently referred to McAfee's $1 trillion estimate. Sen. Joseph Lieberman, I-Conn., and Sen. Susan Collins, R-Maine, the main sponsors of the Cybersecurity Act of 2012 that is expected to be voted on this week, have also mentioned $1 trillion in cybercrime costs. Last week, arguing on the Senate floor in favor of putting their bill up for a vote, they both referenced the $250 billion estimate and repeated Alexander's warning about the greatest transfer of wealth in history.

A handful of media stories, blog posts and academic studies have previously expressed skepticism about these attention-getting estimates, but this has not stopped an array of government officials and politicians from continuing to publicly cite them as authoritative. Now, an examination of their origins by ProPublica has found new grounds to question the data and methods used to generate these numbers, which McAfee and Symantec say they stand behind.

One of the figures Alexander attributed to Symantec 2014 the $250 billion in annual losses from intellectual property theft 2014 was indeed mentioned in a Symantec report, but it is not a Symantec number and its source remains a mystery.

McAfee's trillion-dollar estimate is questioned even by the three independent researchers from Purdue University whom McAfee credits with analyzing the raw data from which the estimate was derived. "I was really kind of appalled when the number came out in news reports, the trillion dollars, because that was just way, way large," said Eugene Spafford, a computer science professor at Purdue.

Spafford was a key contributor to McAfee's 2009 report, "Unsecured Economies: Protecting Vital Information" (PDF). The trillion-dollar estimate was first published in a news release that McAfee issued to announce the report; the number does not appear in the report itself. A McAfee spokesman told ProPublica the estimate was an extrapolation by the company, based on data from the report. McAfee executives have mentioned the trillion-dollar figure on a number of occasions, and in 2011 McAfee published it once more in a new report, "Underground Economies: Intellectual Capital and Sensitive Corporate Data Now the Latest Cybercrime Currency" (PDF).

In addition to the three Purdue researchers who were the report's key contributors, 17 other researchers and experts were listed as contributors to the original 2009 report, though at least some of them were only interviewed by the Purdue researchers. Among them was Ross Anderson, a security engineering professor at University of Cambridge, who told ProPublica that he did not know about the $1 trillion estimate before it was announced. "I would have objected at the time had I known about it," he said. "The intellectual quality of this ($1 trillion number) is below abysmal."

The use of these estimates comes amid increased debate about cyberattacks; warnings of a digital Pearl Harbor are becoming almost routine. "A cyberattack could stop our society in its tracks," Gen. Martin Dempsey, chairman of the Joint Chiefs of Staff, said earlier this year. Bloomberg reported just last week that a group of Chinese hackers, whom U.S. intelligence agencies referred to as "Byzantine Candor," have stolen sensitive or classified information from 20 organizations, including Halliburton Inc., and a prominent Washington law firm, Wiley Rein LLP.

There is little doubt that a lot of cybercrime, cyberespionage and even acts of cyberwar are occurring, but the exact scale is unclear and the financial costs are difficult to calculate because solid data is hard to get. Relying on inaccurate or unverifiable estimates is perilous, experts say, because it can tilt the country's spending priorities and its relations with foreign nations. The costs could be worse than the most dire estimates 2014 but they could be less, too.

Computer security companies like McAfee and Symantec have stepped into the data void. Both sell anti-virus software to consumers, and McAfee also sells a range of network security products for government agencies and private companies, including operators of critical infrastructure like power plants and pipelines. Both firms conduct and publish cybercrime research, too. "Symantec is doing outstanding work on threat analysis," said Thomas Rid, a cybersecurity expert at Kings College London. "But still, of course they have a vested interest in portraying a more dangerous environment because they stand to gain for it."

The companies disagree. Sal Viveros, a McAfee public relations official who oversaw the 2009 report, said in an email to ProPublica, "We work with think tanks and universities to make sure our reports are non-biased and as accurate as possible. The goal of our papers [is] to really educate on the issues and risks facing businesses. Our customers look to us to provide them with our expert knowledge."

Symantec said its estimates are developed with standard methods used by governments and businesses to conduct consumer surveys and come from "one of the few, large, multi-country studies on cybercrime that asks consumers what forms of cybercrime they have actually experienced and what it cost them."

* * *

Continue reading »

A prominent member of the amorphous hacktivist collective Anonymous was reportedly turned informant by the FBI, leading to the arrest of five hackers in three countries. Prosecutors announced charges Tuesday against the men, spread across Britain, Ireland, and Chicago, and alleged that they have been engaged in efforts to steal information from the computer systems of U.S. companies, and hack government websites. The officials alleged that the five were involved in the recent hacking of Stratfor, a Texas-based intelligence company that had documents leaked on the Internet after WikiLeaks got a hold of them. The FBI was led to the five men by an informer, Hector Xavier Monsegur, a hacker who was arrested in June and began cooperating with law enforcement.

MSNBC:

"Sabu (aka Hector Xavier Monsegur) was seen as a leader ... Now that Anonymous realizes he was a snitch and was working on his own for the Fed, they must be thinking: 'If we can't trust Sabu, who can we trust?' " said Mikko Hypponen, chief research officer at Finnish computer security company F-Secure.

"It's probably not going to be the end of Anonymous, but it's going to take a while for them to recover, especially from the paranoia," Hypponen said.
...

Anonops, which sends online messages on behalf of "Anonymous," sent a message on Twitter following the arrests. "#Anonymous Is an idea, not a group. There is no leader, there is no head. It will survive, before, during, and after this time," Anonops tweeted just after noon on Tuesday.

If any time to "recover" was needed, Anonymous may well have moved on as "Sabu's" role as an informant was revealed to the internet community last November, when this anonymous blog post came to light:

It’s been a few months now since the original release of this website and since then a lot of further information has come to light. Upon the public release of this information Sabu went to the ground for an entire month, beginning on the exact same day just hours later. His reappearance was not much of a surprise, as it has been a frequent public rumored (and secretly verified) that Sabu was identified, apprehended by the FBI and turned to an informant. Over the past several months, all of the original LulzSec member except Sabu himself have been arrested. Even though Sabu has been publicly doxed and completely owned on several occasions. You may be asking yourself, why is he still free? The answer is Intel. The longer he is “free” is the longer that the FBI and other LEAs can gather information on other hackers and move in for more arrests. Simple as that.

You can view the court documents on the case below.

Sabu Court Dox

Via:

In Hungary, IT workers retire at 32 and get pensions equal to 150 per cent of their salaries. That’s according to Anonymous’ version of the Hungarian Constitution, which they posted after hacking the website of the Constitutional Court.

­“Ideals and rulers of tyranny, or dictators represent but short periods of history. The people have the right to eliminate tyranny or rebel against it,” said the “new constitution” written by the Anonymous hacker group.

The hackers have made their own adjustments to basic Hungarian law. Thus, according to the group’s version of the constitution, IT workers not only get to retire early on a luxurious pension, but are also exempted from paying tax.

The text of Anonymous’ “ideal” constitution was swiftly removed from the court’s website.

Either a lot of hacktivists live in Hungary, and make their living as IT workers...or Anonymous just really, really loves Hungary.