AntiSec hackers dump data after hacking police websites
The Anonymous-affiliated group made public a 10GB database
IDG News Service - The war between law enforcement and the Anonymous hacking collective continued this weekend as hackers dumped a 10 gigabyte database that included private e-mails and information sent by confidential informants. Hackers say they stole information during an attack on more than 70 small-town law enforcement agencies.
The hackers, an Anonymous-affiliated group known as AntiSec, say that they hope to "embarrass, discredit and incriminate police officers across the US," in retaliation for ongoing arrests of Anonymous members.
AntiSec said that it had compromised servers at Brooks-Jeffrey, a Mountain Home, Ark. company that runs a computer store and online marketing firm. Brooks-Jeffrey Marketing builds websites for sheriff's agencies throughout the southern United States.
"It took less than 24 hours to root BJM's server and copy all their data to our private servers," AntiSec said in a statement posted Saturday.
Brooks-Jeffrey could not immediately be reached for comment.
The hackers had already knocked many of the sheriffs' websites offline last week, but on Saturday AntiSec showed that it had gone beyond mere Web defacement, by posting e-mail messages, passwords, social security numbers, credit card numbers as well as messages from confidential informants.
In the U.S., the criminal investigation of Anonymous is being led by the U.S. Federal Bureau of Investigation. The sheriffs' sites appear to hit simply because they are part of the law enforcement community and because a security flaw at Brooks-Jeffrey made them an easy target for the hackers.
Hackers will often hit third-party service providers as a stepping stone toward more sensitive targets. Earlier this year, online marketer Epsilon Data Management was compromised, forcing dozens of companies, including J.P. Morgan, Verizon, and TiVo, to warn millions of customers that their email addresses had been stolen.
Many of the defaced sheriffs' websites had been restored by Sunday morning. The victims include sheriffs in Arkansas, Mississippi, and Missouri.
The hackers claim to have obtained passwords, contact information and social security numbers from the Missouri Sheriffs' Association's website, which remained offline Sunday.
- Arrests made after international cyber-ring targets StubHub
- International police operation disrupts Shylock banking Trojan
- Spamhaus pushes for arrests of alleged DDoS participants
- Accused Russian point-of-sale hacker arrested, will face U.S. charges
- No-IP regains control of some domains wrested by Microsoft
- Microsoft legal action cramping other hacking campaigns, Kaspersky says
- Microsoft admits technical error in IP takeover, but No-IP still down
- QuickPoll: Why hasn't Windows XP come under attack from hackers?
- Cybercrime losses top $400 billion worldwide
- U.S., foreign agents disrupt Gamover Zeus botnet
This pilot fish is a contractor at a military base, working on some very cool fire-control systems for tanks. But when he spots something obviously wrong during a live-fire test, he can't get the firing-range commander's attention.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Reduce federal infrastructure risk with compliance management and situational awareness
- IBM continuous monitoring and management solutions deliver real-time situational awareness to help federal agencies understand vulnerabilities, and protect the infrastructure.
- 5 Customers Deliver Virtual Desktops and Apps to Empower a Modern Workforce
- Learn how Citrix solutions helped 5 companies realize the full value of desktop virtualization through a project-by-project approach based on key business priorities.
- Top 10 Reasons to Strengthen Information Security with Desktop Virtualization
- Regain control and reduce risk without sacrificing business productivity and growth
- IDC MarketScape: Worldwide Client Virtualization Software 2013 Vendor Assessment
- IDC has placed Citrix in the 2013 IDC MarketScape Leaders Category once again noting that, "Citrix's position reflects the company's market leadership and...
- Infographic: Top Use Cases for Desktop Virtualization
- A wide range of business issues is driving IT toward desktop virtualization. One solution-Citrix XenDesktop with FlexCast technology-helps IT teams empower their entire... All Government IT White Papers
- What Does it Take to Deliver a Superior Customer Experience? The Two Top-Rated Online Retailers, B&H Photo and Crutchfield Electronics, Share Their Secrets Discuss practical CX tools and service methods such as contact center agents and the use of realtime speech analytics to help contact center...
- Keep Servers Up and Running and Attackers in the Dark An SSL/TLS handshake requires at least 10 times more processing power on a server than on the client. SSL renegotiation attacks can readily...
- On Demand: Mastering the Art of Mobile Content Management Mobile device usage in the enterprise has skyrocketed, and it continues to escalate. IT must answer to users who demand access to their...
- DevOps with PureApplication System: Reduce cost and speed delivery with an integrated IBM Cloud solution Join this webcast to hear what ING Netherlands has been able to achieve while deploying DevOps tools from IBM Rational. An ING executive...
- NSS Labs & Cisco Present: Evaluating Leading Breach Detection Systems Today's constantly evolving advanced malware and APTs can evade point-in-time defenses to penetrate networks. Security professionals must evolve their strategy in lockstep to...
- All Government IT Webcasts