Hacker group claims hit on US defense contractor

Hacker group Anonymous has released military email addresses and passwords from a US defense consulting firm
Hacker group Anonymous on Monday released a trove of military email addresses and passwords it claimed to have plundered from the network of US defense consulting firm Booz Allen Hamilton.

Hacker group Anonymous released a trove of military email addresses and passwords it claimed to have plundered from the network of US defense consulting firm Booz Allen Hamilton.

Anonymous made available a file containing more than 90,000 email addresses and other information it said in online messages that it stole from an unprotected server at Booz Allen.

"Anonymous claims to have erased four gigabytes worth of source code and to have discovered information which could help them attack US government and other contractors' systems," computer Sophos said in a blog post.

"While this should certainly be embarrassing to Booz Allen Hamilton, the real impact is on the US military," the post continued.

In a message accompanying the data at file-sharing website The , Anonymous said Booz Allen was targeted in a "Meltdown Monday" as part of an anti-security, or "antisec," movement.

"So in this line of work you'd expect them to sail the seven proxseas with a state-of-the-art battleship, right?" Anonymous said, using pirate jargon and playing off a reference to proxy .

"Well, you may be as surprised as we were when we found their vessel being a puny wooden barge," the message continued. "We infiltrated a server in their network that basically had no in place."

While some downplayed the value of the looted data, computer security specialists warn that the email addresses could be used to target messages that trick recipients into revealing information or downloading viruses.

Booz Allen declined to comment on the incident, citing a company policy of not discussing "specific threats or actions taken against our systems."

Anonymous rose to infamy last year with in support of controversial whistle-blower website WikiLeaks.

The group was linked to attacks on Visa, Mastercard and , which blocked donations to WikiLeaks after it published thousands of US diplomatic cables.

Early this year, Anonymous took credit for breaking into the website of HBGary Federal, stealing tens of thousands of email messages and temporarily routing traffic to a page with a vitriolic message.

Anonymous claimed to have busted through HBGary Federal computer defenses in February because the firm was working with federal agents to expose the hackers' identities.

The HBGary hack was more sophisticated than the distributed denial of service (DDoS) attacks last year on the Amazon, Visa and MasterCard websites in apparent retaliation for their decisions to stop working with WikiLeaks.

In a typical DDoS attack, a large number of computers are commanded to simultaneously visit a website, overwhelming its servers, slowing service or knocking it offline completely.

In recent months, police in Spain, Turkey and Italy have arrested suspected members of Anonymous, which is believed to have branches in several countries.

Explore further

Wikileaks defenders hack computer security firm

(c) 2011 AFP

Citation: Hacker group claims hit on US defense contractor (2011, July 12) retrieved 14 October 2019 from https://phys.org/news/2011-07-hacker-group-defense-contractor.html
This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no part may be reproduced without the written permission. The content is provided for information purposes only.

Feedback to editors

User comments

Jul 12, 2011
Military budget $1.5 Trillion, money spent on actual cyber security... a $45 copy of McAfee.

Jul 12, 2011
I don't think McAfee protects against things like buffer overflow, DoS, or SQL injection. All of these things can be done without having extensive knowledge of computer systems with tools that were created by people who do have the knowledge. I am not agreeing or disagreeing with your 1.5 trillion dollar comment because I certainly don't know enough about what that money was spent on but I will assure you that if McAfee was all that was needed you would see McAfee in every home.

Jul 12, 2011
In the world of IT, McAfee is a joke in terms of antivirus (not far behind Norton).

Indeed... anti-virus software does nothing to protect against DoS or SQL injection.

Jul 12, 2011
1. Download a virus
2. Share virus through P2P Programs
3. Build army of Zombie computers
4. Send commands to zombie computers to do what you want

The world has made this easy, I dont do it, but it can be done. I've even read that you can lease or buy large numbers of zombie computers to use. Its no suprise we are seeing more hacking these days, you can do sooo much just from one little computer. You should also note that lots of government officials are old baby boomers that are not as saavy with computers as younger people, making them easier targets for hacking.

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more