Anonymous DDOS participants tricked into installing trojan

Fed up talking videogames? Why?
bear
Member
Member
Joined in 2008

PostAnonymous DDOS participants tricked into installing trojan
by bear » Sun Mar 04, 2012 11:39 pm

Why hasn't freeda posted this yet? It sounds like his sort of thing.

http://www.theverge.com/2012/3/4/2842559/anonymous-ddos-participants-tricked-installing-zeus-trojan

The hacker group Anonymous has been quite busy as of late, claiming responsibility for takedowns of the Department of Justice and numerous record label sites in support of file-sharing site Megaupload, as well as hacking emails and passwords of Syrian government officials. According to Symantec, however, participants in the group's DDOS attacks may have opened themselves up to being compromised. The security firm explains that on January 20th — the day Megaupload co-founder Kim Dotcom was arrested — links to the Slowloris DDOS tool were changed on a frequently-shared Anonymous how-to guide. A second guide was also posted to Pastebin with the same link, which led to a trojanized copy that installed the Zeus trojan on users' systems. The compromised download then replaced itself with a clean version of the tool to avoid detection.

The Zeus trojan collects email login information, banking credentials, and cookies, along with other information, sending them off to a command-and-control server that can also force infected machines to participate in additional DDOS attacks without the user's direct permission. The tainted link has since been removed from the guides in question, and while it's unclear how many Anonymous participants may have had their machines compromised, the numbers are certainly daunting. According to Symantec, the link to the second infected Pastebin guide was tweeted 400 times, racking up 26,000 views.

User avatar
Jam-Master Jay
Member
Joined in 2008
AKA: Lord Hypnos
Location: Stourbridge
Contact:

PostRe: Anonymous DDOS participants tricked into installing troj
by Jam-Master Jay » Mon Mar 05, 2012 12:00 am

:lol:

Image
User avatar
PCCD
Member
Joined in 2008

PostRe: Anonymous DDOS participants tricked into installing troj
by PCCD » Mon Mar 05, 2012 12:07 am

And people worship these idiots? :lol:

The Holly and Delusi wrote:PENALTY: Blatant lies. Five minutes in the Sin Bin.
bear
Member
Member
Joined in 2008

PostRe: Anonymous DDOS participants tricked into installing troj
by bear » Mon Mar 05, 2012 12:27 am

Cuban Pete wrote:I don't even know what it means!

As I understand it people who wanted to support Anonymous taking down various websites could download this Slowloris DDOS tool and use it to join in on the DDOS attack. Someone with access to the how-to guide changed a download link and tricked a bunch of people into downloading a version of the software that compromised their PCs security.

User avatar
SEP
Member ♥
Joined in 2008
AKA: Moggy

PostRe: Anonymous DDOS participants tricked into installing troj
by SEP » Mon Mar 05, 2012 1:08 am

I believe that is the very definition of PWNED.

Image
freeda
Member
Joined in 2011

PostRe: Anonymous DDOS participants tricked into installing troj
by freeda » Mon Mar 05, 2012 1:56 am

Indeed they appear to have pwned themselves there.

As for me failing to post this first, you're right. Shame on me. Back on Cheggit people would usually respond to my doomsday posts and threads by simply posting:


Image
bear wrote:Why hasn't freeda posted this yet? It sounds like his sort of thing.

http://www.theverge.com/2012/3/4/2842559/anonymous-ddos-participants-tricked-installing-zeus-trojan

The hacker group Anonymous has been quite busy as of late, claiming responsibility for takedowns of the Department of Justice and numerous record label sites in support of file-sharing site Megaupload, as well as hacking emails and passwords of Syrian government officials. According to Symantec, however, participants in the group's DDOS attacks may have opened themselves up to being compromised. The security firm explains that on January 20th — the day Megaupload co-founder Kim Dotcom was arrested — links to the Slowloris DDOS tool were changed on a frequently-shared Anonymous how-to guide. A second guide was also posted to Pastebin with the same link, which led to a trojanized copy that installed the Zeus trojan on users' systems. The compromised download then replaced itself with a clean version of the tool to avoid detection.

The Zeus trojan collects email login information, banking credentials, and cookies, along with other information, sending them off to a command-and-control server that can also force infected machines to participate in additional DDOS attacks without the user's direct permission. The tainted link has since been removed from the guides in question, and while it's unclear how many Anonymous participants may have had their machines compromised, the numbers are certainly daunting. According to Symantec, the link to the second infected Pastebin guide was tweeted 400 times, racking up 26,000 views.

User avatar
1cmanny1
Member ♥
Joined in 2008
Location: New Zealand

PostRe: Anonymous DDOS participants tricked into installing troj
by 1cmanny1 » Mon Mar 05, 2012 2:36 am

I think this is another scare tactic. Smart though.

Dotcom has been interviewed quite a lot over here, he seems pretty confident he will win any court case. I wonder what would happen if he did. Surely they cant allow that.
Just on a side note, he said how could they just "shutdown" a billion dollar company without any trial. I agree with that.

Image
freeda
Member
Joined in 2011

PostRe: Anonymous DDOS participants tricked into installing troj
by freeda » Tue Mar 06, 2012 6:36 pm

http://news.yahoo.com/lulzsec-leader-tu ... -news.html

LulzSec 'Leader' Turns on Fellow Hacktivists: Feds

That's what happens when they don't remain annonymous. Idiots. Well I guess Annon will be gunning for Sabu now for betraying them.

User avatar
Neo Cortex
Member
Joined in 2008
AKA: Jamiej
Contact:

PostRe: Anonymous DDOS participants tricked into installing troj
by Neo Cortex » Tue Mar 06, 2012 6:46 pm

freeda wrote:http://news.yahoo.com/lulzsec-leader-turns-fellow-hacktivists-feds-160134846--abc-news.html

LulzSec 'Leader' Turns on Fellow Hacktivists: Feds

That's what happens when they don't remain annonymous. Idiots. Well I guess Annon will be gunning for Sabu now for betraying them.


As long as he doesn't do much on the internet I can't imagine them doing anything. What are they gonna do? Leave a flaming paper bag with faeces in it on his doorstep?

User avatar
Lagamorph
Member ♥
Joined in 2010

PostRe: Anonymous DDOS participants tricked into installing troj
by Lagamorph » Tue Mar 06, 2012 6:47 pm

bear wrote:Why hasn't freeda posted this yet?

It doesn't involve porn.

Lagamorph's Underwater Photography Thread
Zellery wrote:Good post Lagamorph.
Turboman wrote:Lagomorph..... Is ..... Right
freeda
Member
Joined in 2011

PostRe: Anonymous DDOS participants tricked into installing troj
by freeda » Thu Mar 08, 2012 6:24 pm

I guess it's over guys. They arrested one hacker from the internet so now anonymous is defeated.
http://news.yahoo.com/anonymous-hurt-ar ... 09809.html

LONDON (Reuters) - In turning one of its best-known hackers into an informant and breaking open the highest profile elements of the "Anonymous" movement, authorities have dealt a serious blow to a group they found a growing irritant.

But as the broader "Anonymous" label - complete with its iconic Guy Fawkes mask imagery - is used by ever more disparate causes worldwide, it may be all but impossible to shut it down for good.

U.S. authorities revealed on Wednesday that leading Anonymous hacker "Sabu" - real name Hector Xavier Monsegur, aged 28 - had been arrested last June in his apartment in a Manhattan housing complex.


Okay they didn't quite put it that way but they seem to imply that by arresting one hacker of the web they'll have dealt a serious blow to annon. How so? What can he possibly do? Rat on 5 other people? Big whoop. There are literally millions of members and most aren't known one another. Why do the media feel the need to push such false propaganda?


Return to “Stuff”

Who is online

Users browsing this forum: DarkRula, Grumpy David, Lex-Man, Yoshimi and 335 guests