Hacker group claims hit on US defense contractor

Jul 12, 2011 by Glenn Chapman
Hacker group Anonymous on Monday released a trove of military email addresses and passwords it claimed to have plundered from the network of US defense consulting firm Booz Allen Hamilton.

Hacker group Anonymous released a trove of military email addresses and passwords it claimed to have plundered from the network of US defense consulting firm Booz Allen Hamilton.

Anonymous made available a file containing more than 90,000 email addresses and other information it said in online messages that it stole from an unprotected server at Booz Allen.

"Anonymous claims to have erased four gigabytes worth of source code and to have discovered information which could help them attack US government and other contractors' systems," computer Sophos said in a blog post.

"While this should certainly be embarrassing to Booz Allen Hamilton, the real impact is on the US military," the post continued.

In a message accompanying the data at file-sharing website The , Anonymous said Booz Allen was targeted in a "Meltdown Monday" as part of an anti-security, or "antisec," movement.

"So in this line of work you'd expect them to sail the seven proxseas with a state-of-the-art battleship, right?" Anonymous said, using pirate jargon and playing off a reference to proxy .

"Well, you may be as surprised as we were when we found their vessel being a puny wooden barge," the message continued. "We infiltrated a server in their network that basically had no in place."

While some downplayed the value of the looted data, computer security specialists warn that the email addresses could be used to target messages that trick recipients into revealing information or downloading viruses.

Booz Allen declined to comment on the incident, citing a company policy of not discussing "specific threats or actions taken against our systems."

Anonymous rose to infamy last year with in support of controversial whistle-blower website WikiLeaks.

The group was linked to attacks on Visa, Mastercard and , which blocked donations to WikiLeaks after it published thousands of US diplomatic cables.

Early this year, Anonymous took credit for breaking into the website of HBGary Federal, stealing tens of thousands of email messages and temporarily routing traffic to a page with a vitriolic message.

Anonymous claimed to have busted through HBGary Federal computer defenses in February because the firm was working with federal agents to expose the hackers' identities.

The HBGary hack was more sophisticated than the distributed denial of service (DDoS) attacks last year on the Amazon, Visa and MasterCard websites in apparent retaliation for their decisions to stop working with WikiLeaks.

In a typical DDoS attack, a large number of computers are commanded to simultaneously visit a website, overwhelming its servers, slowing service or knocking it offline completely.

In recent months, police in Spain, Turkey and Italy have arrested suspected members of Anonymous, which is believed to have branches in several countries.

Explore further: Twitter looks to weave into more mobile apps

add to favorites email to friend print save as pdf

Related Stories

Wikileaks defenders hack computer security firm

Feb 07, 2011

A hacker group behind online attacks on companies that withdrew services to WikiLeaks busted through the defenses of a computer security firm working with federal agents to expose their identities.

'Anonymous' hackers planning 'real-world attacks'

Feb 17, 2011

A computer security firm working to expose members of hacker group "Anonymous" pulled out of a premier industry conference here due to threats of real-world attacks on its employees.

British arrests over cyber group 'Anonymous'

Jan 27, 2011

British police arrested five people Thursday as part of an investigation into cyber attacks by the online group "Anonymous", which last year assailed websites that were hostile to WikiLeaks.

Hackers train sights on Yemen after Egypt

Feb 03, 2011

The loose-knit group of online global hackers known as "Anonymous" has trained its sights on Yemen following cyber attacks on government websites in Tunisia and Egypt.

Spain nabs 3 suspected of global cyber attacks

Jun 10, 2011

(AP) -- Spanish police arrested three suspected computer hackers who allegedly belonged to a loose-knit international activist group that has attacked corporate and government websites around the world, authorities said ...

Recommended for you

Twitter looks to weave into more mobile apps

11 hours ago

Twitter on Wednesday set out to weave itself into mobile applications with a free "Fabric" platform to help developers build better programs and make more money.

Google unveils app for managing Gmail inboxes

12 hours ago

Google is introducing an application designed to make it easier for its Gmail users to find and manage important information that can often become buried in their inboxes.

Fighting cyber-crime one app at a time

18 hours ago

This summer Victoria University of Wellington will be home to four Singaporean students researching cyber threats. The students have been working with Dr Ian Welch, a lecturer in Victoria's School of Engineering and Computer ...

Is big data heading for its 'horsemeat moment'?

20 hours ago

There have been so many leaks, hacks and scares based on misuse or misappropriation of personal data that any thought that "big data" could provide benefits rather than only opportunities for harm may be ...

User comments : 4

Adjust slider to filter visible comments by rank

Display comments: newest first

tigger
4 / 5 (1) Jul 12, 2011
Military budget $1.5 Trillion, money spent on actual cyber security... a $45 copy of McAfee.
elbeasto
not rated yet Jul 12, 2011
I don't think McAfee protects against things like buffer overflow, DoS, or SQL injection. All of these things can be done without having extensive knowledge of computer systems with tools that were created by people who do have the knowledge. I am not agreeing or disagreeing with your 1.5 trillion dollar comment because I certainly don't know enough about what that money was spent on but I will assure you that if McAfee was all that was needed you would see McAfee in every home.
tigger
not rated yet Jul 12, 2011
In the world of IT, McAfee is a joke in terms of antivirus (not far behind Norton).

Indeed... anti-virus software does nothing to protect against DoS or SQL injection.
krundoloss
not rated yet Jul 12, 2011
GUIDE TO HACKING THE WORLD
1. Download a virus
2. Share virus through P2P Programs
3. Build army of Zombie computers
4. Send commands to zombie computers to do what you want

The world has made this easy, I dont do it, but it can be done. I've even read that you can lease or buy large numbers of zombie computers to use. Its no suprise we are seeing more hacking these days, you can do sooo much just from one little computer. You should also note that lots of government officials are old baby boomers that are not as saavy with computers as younger people, making them easier targets for hacking.