Editor’s Note – SUA is familiar with the hacking activities of ‘Anonymous’ as we too were part of an earlier breech through a service provider, so our sentiments go out to our friends at Stratfor. Like all security services, one cannot control all access points, and central points of failure are the target of people who have nothing but time on their hands for such devious deeds. Also, every breech that gets sealed is a learning experience, but we know as one hole is repaired, more will be found.
SUA has been constantly monitoring the newest war zone, Cyber-space, not only from the hackers who entertain themselves with these Robin Hood style attacks, but more importantly, attacks from our enemies like the Chinese military, intellectual property theft, and SCADA damage.
Stratfor Targeted by Hacking Group Anonymous
Hackers posted what they claimed to be personal details of the company’s clients on the information-sharing site Pastebin.
By: Nathan Eddy
The loosely-associated band of hackers known as Anonymous claims to have targeted the global intelligence think tank Strategic Forecasting, known as Stratfor, boasting on the microblogging site Twitter that personal information, including credit card numbers, belonging to Stratfor clients had been stolen. As of Monday morning, Stratfor’s Website was down, with a placeholder page saying the site was undergoing maintenance and asking visitors to “check back soon.”
Following the breach, hackers posted the details of the information on the information-sharing site Pastebin. In an email obtained by Reuters Sunday, Stratfor acknowledged an unauthorized breach. “As a result of this incident, the operation of Stratfor’s servers and email have been suspended,” the company wrote. Stratfor also issued an email to its members, which was obtained by the Associated Press, warning that some names and personal information would wind up on other sites.
“We are diligently investigating the extent to which subscriber information may have been obtained,” read the letter, signed by company CEO George Friedman. “Stratfor’s relationship with its members and, in particular, the confidentiality of their subscriber information, are very important to Stratfor and me.”
Anonymous has defaced and shut down Websites belonging to the music industry, companies that severed ties with WikiLeaks and various government agencies. The FBI and international law-enforcement agencies have been investigating the attacks and making arrests for the past few months. The Department of Homeland Security has begun to take Anonymous and other non-professional cyber-attackers more seriously as it issued warnings about potential attacks earlier this year.
In September, Obama administration officials spoke about the need for increased penalties for computer crimes in light of increased data breaches and hacking activity. The increase in computer crime, including Anonymous-led distributed denial-of-service attacks, Website attacks where data is stolen and general online mayhem, has led the White House to call for an increase in criminal penalties for computer crimes.
Online attacks have become more serious as attackers target sensitive personal data and corporate secrets and undermine infrastructure security. However, the penalties under the Computer Fraud and Abuse Act don’t match the seriousness or complexity of cyber-crime, Associate Deputy Attorney General James Baker and Secret Service Deputy Special Agent in Charge, Criminal Investigative Division, Pablo Martinez said Sept. 7 in a hearing before the Senate Judiciary Committee. The proposal was based on the White House’s cyber-security plan unveiled in May.
From Geekhat:
Whitehat security firm Stratfor underwent a massive hack by Anonymous hackers on eve of Christmas or should we tell ‘LulzXmas’ as the Anonymous would call it. STRATFOR provides intelligence to a range of commercial and government customers, and has been beefing up its coverage of cyber, and specifically of Anonymous. Official website of Stratfor stratfor.com went offline after the attack but those interested can view a mirror of the deface.
Anonymous hackers posted this youtube video at the top of the defaced page: