LulzSec rampage continues: 62k e-mails and passwords, CIA attacked

[nsane.forums]

Hacking group Lulz Security is continuing to amuse itself at the expense of others, with the release today of 62,000 e-mail addresses and associated passwords. The group didn't say where it got the information, or how it got it; instead, it exhorted its Twitter followers to create lulz of their own, and use the information to break into Facebook, Twitter, World of Warcraft, and much more—a task often made easy by the use of shared passwords.

The tweets that followed suggest that their followers have risen to the challenge, with numerous tales of multiple e-mail break-ins and account compromises, vandalism of Facebook and dating site profiles, and more.

This comes after another day of distributed denial of service attacks. Following on from Titanic Takeover Tuesday, LulzSec yesterday continued to DDoS various game login servers. In a more daring move, the group brought down cia.gov under a flood of traffic. If its past actions haven't got the attention of law enforcement, the CIA attack is sure to have done so.

The group also embarked on a rather more old-school denial of service attack, flooding not just Web servers but phone switchboards too. They set up a phone number and redirected it to various targets of their choosing—apparently including an FBI office in Detroit—and then asked their Twitter followers to call it. The result? Switchboards swamped with thousands of calls.

The CIA attack, along with a bunch of tweets today mocking HBGary, and the earlier PBS hack, shows that perhaps the group is a little more politically motivated than it lets on. Though ostensibly motivated merely by lulz, seeking amusement from the trouble caused for others, LulzSec's members do seem to retain political leanings similar to their Anonymous forbears. Indiscriminate as they may be—it doesn't matter what line of business you're in, if your systems suffer from basic security flaws, they're happy to exploit you and publish the results—being part of the establishment and acting against the interests of WikiLeaks are both grounds for extra attention from the LulzSec crew.

LulzSec's escapades have also been immortalized in a video from NMA. Never before has the true spirit of 4chan, Anonymous, and LulzSec been captured on film.

NMA's "LulzSec goes on hacking rampage for Lolz"

View: Original Article

[toyo]

LulzSec - 1000th tweet statement:

Dear Internets,

This is Lulz Security, better known as those evil bastards from twitter. We just hit 1000 tweets, and as such we thought it best to have a little chit-chat with our friends (and foes).

For the past month and a bit, we've been causing mayhem and chaos throughout the Internet, attacking several targets including PBS, Sony, Fox, porn websites, FBI, CIA, the U.S. government, Sony some more, online gaming servers (by request of callers, not by our own choice), Sony again, and of course our good friend Sony.

While we've gained many, many supporters, we do have a mass of enemies, albeit mainly gamers. The main anti-LulzSec argument suggests that we're going to bring down more Internet laws by continuing our public shenanigans, and that our actions are causing clowns with pens to write new rules for you. But what if we just hadn't released anything? What if we were silent? That would mean we would be secretly inside FBI affiliates right now, inside PBS, inside Sony... watching... abusing...

Do you think every hacker announces everything they've hacked? We certainly haven't, and we're damn sure others are playing the silent game. Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now, sniping out individual people, or perhaps selling them off? You are a peon to these people. A toy. A string of characters with a value.

This is what you should be fearful of, not us releasing things publicly, but the fact that someone hasn't released something publicly. We're sitting on 200,000 Brink users right now that we never gave out. It might make you feel safe knowing we told you, so that Brink users may change their passwords. What if we hadn't told you? No one would be aware of this theft, and we'd have a fresh 200,000 peons to abuse, completely unaware of a breach.

Yes, yes, there's always the argument that releasing everything in full is just as evil, what with accounts being stolen and abused, but welcome to 2011. This is the lulz lizard era, where we do things just because we find it entertaining. Watching someone's Facebook picture turn into a penis and seeing their sister's shocked response is priceless. Receiving angry emails from the man you just sent 10 dildos to because he can't secure his Amazon password is priceless. You find it funny to watch havoc unfold, and we find it funny to cause it. We release personal data so that equally evil people can entertain us with what they do with it.

Most of you reading this love the idea of wrecking someone else's online experience anonymously. It's appealing and unique, there are no two account hijackings that are the same, no two suddenly enraged girlfriends with the same expression when you admit to killing prostitutes from her boyfriend's recently stolen MSN account, and there's certainly no limit to the lulz lizardry that we all partake in on some level.

And that's all there is to it, that's what appeals to our Internet generation. We're attracted to fast-changing scenarios, we can't stand repetitiveness, and we want our shot of entertainment or we just go and browse something else, like an unimpressed zombie. Nyan-nyan-nyan-nyan-nyan-nyan-nyan-nyan, anyway...

Nobody is truly causing the Internet to slip one way or the other, it's an inevitable outcome for us humans. We find, we nom nom nom, we move onto something else that's yummier. We've been entertaining you 1000 times with 140 characters or less, and we'll continue creating things that are exciting and new until we're brought to justice, which we might well be. But you know, we just don't give a living fuck at this point - you'll forget about us in 3 months' time when there's a new scandal to gawk at, or a new shiny thing to click on via your 2D light-filled rectangle. People who can make things work better within this rectangle have power over others; the whitehats who charge $10,000 for something we could teach you how to do over the course of a weekend, providing you aren't mentally disabled.

This is the Internet, where we screw each other over for a jolt of satisfaction. There are peons and lulz lizards; trolls and victims. There's losers that post shit they think matters, and other losers telling them their shit does not matter. In this situation, we are both of these parties, because we're fully aware that every single person that reached this final sentence just wasted a few moments of their time.

Thank you, bitches.

Lulz Security

[DKT27]

-_-

How to get them down? Don't give a sh*t about them. It's true that the courses teach you in months can be learned in weeks. But hacking for fun, well, I have seen people who have lost interest after reaching a mark.

[avmad]

More Lulz :rolleyes:

The UK Serious Organised Crime agency has taken its website offline after it appeared to be a victim of an attack by hacking group Lulz Security.

BBC News

[Atasas]

I'd say, as what we know not necessarily is true in its sense. Who did what, who identify, who misinformed one, to inform us...just not as plain picture ;)