Monday 26 December 2011

Anonymous hacks US security firm Stratfor

26 Decmber, 2011]

ONLINE hacking group, Anonymous, has claimed to have stolen a trove of emails and credit-card information from the clients of a US-based security company, Stratfor.

The group has promised more attacks.

Hackers provided a link on Twitter to what they said was Stratfor's private client list, which included the US Defense Department, Army, Air Force, law enforcement agencies, top security contractors and technology firms such as Apple and Microsoft.

They also posted images online claiming to show receipts from donations made by the hackers on behalf of some of Stratfor's clients by using their credit-card data.

The hackers said they had been able to obtain the information in part because Stratfor did not encrypt it, which could prove a big blow to a company that calls itself a global intelligence firm.

"Anonymous hacks and discredits @STRATFOR intelligence company," a user called YourAnonNews wrote on Twitter. "Maybe they should learn what encryption is."

An alleged Anonymous hacker who uses the Twitter handle anonymouSabu claimed that more than 90,000 credit-card details from law enforcement, journalists and the intelligence community had been obtained and used for "over a million dollars" in donations.

A widely distributed hacking message posted online, however, mentioned around 4,000 credit cards, passwords and home addresses.

Among the donations shown was a $494 payment on behalf of the Department of Defense for textbooks, a school uniform and food crisis education provided by charity CARE for impoverished girls and women.

A $180 payment was also made to the American Red Cross on behalf of a Department of Homeland Security official, and was signed "Thank you! Department of Homeland Security." 

Another $200 payment was made to the American Red Cross on behalf of a Texas Department of Banking official.

In an email to its members, Stratfor said it was suspending its email and servers after learning the website had been hacked.

"We have reason to believe that the names of our corporate subscribers have been posted on other web sites," said the email, signed by Stratfor chief executive George Friedman. "Stratfor and I take this incident very seriously."

He said Stratfor was "working closely with law enforcement" to identify those responsible.

By midday, the company's website was down, with the explanation that it was "currently undergoing maintenance".

Wishing a "Merry LulzXmas" to all - in an apparent reference to Anonymous-affiliated group Lulz Security - Anonymous said it would focus its next attacks on celebrities Justin Bieber, Lady Gaga, Kim Kardashian and Taylor Swift.

Anonymous has been involved in scores of hacking exploits, including the recent defacing of a website of Syria's Ministry of Defense to protest against a bloody crackdown on anti-government protesters.

Last year, the shadowy group launched retaliatory attacks on companies perceived to be enemies of the anti-secrecy website WikiLeaks.

How the Stratfor site looked minutes after the hack

Full letter from George Friemdan to clients as of an hour ago

No comments:

Post a Comment

Note: only a member of this blog may post a comment.