AntiSec | US Cyber Labs

Category Archives AntiSec
gAtO aLmOsT -got hacked

Posted on February 19, 2012 by gatomalo Comment

gAtO aLmOsT -got hacked WHY? after a nice kitty nap I woke up and found my site uscyberlabs.com was suspended. I could not get into my site or get any email so I called my hosting provider. We soon found out that someone was trying to do a brute force trying to get into my admin panel. (see logs—below) To top it off someone called my provider and tried to social engineer them into resetting my password. From my simple SEO plug-ins I could see that it was a ToR connection the IP 72.14.182.266 running a Python-urllib/2.7 script. You can see the timestamp and the delay’s give it away to a ToR connection. Of course my hosting Service is doing some research to see what they can find out but the IP as well as the phone call were non-traceable (or were they).

gAtOmAlO sAy's

Since gAto writes about Anonymous I assume at first that the FBI was going to kick down my door but that made no sense since everything I publish is available online Open-Source. I did notice a few days ago a tweet warning of a grayHat that needed a Dox – http://whatismyipaddress.com/ip/72.14.182.226 this is a little info about the IP address it shows Dallas, TX but my internal SEO places it in Newark, NJ.

Why is the question did I piss someone off, was I getting close. I HAVE a lot of information about Anonymous and the crew(z) that I do not publish, just because “gAtO is No SnItCh”. Maybe @MissRevolution_ got pissed because of her money problems or Xgirlfriend, in Chi-town I could go on and on but The OpCashBack Twitter of Banks that I published was to get the world out. Why so many banks have twitter I still find that interesting. Oh Well back to the SaltMines -

Ok so is GaTo’s words so powerful that you want to hack his site…. gAtO feel so important —naw.. just messing.. -gAtO oUt

http domain 72.14.182.226 Hostip (subject) more info

Country: UNITED STATES (US)

City: Newark, NJ

IP: 72.14.182.226

,

li45-226.members.linode.com

Python-urllib/2.7

February 19, 2012 15:06:44

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:43

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:42

/blog/?p=1915

February 19, 2012 15:06:40

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:39

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:38

/blog/?p=1915

February 19, 2012 15:06:34

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:33

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:06:32

/blog/?p=1915

February 19, 2012 15:02:53

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:53

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:51

/blog/?p=1915

February 19, 2012 15:02:50

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:49

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:48

/blog/?p=1915

February 19, 2012 15:02:45

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:43

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 15:02:42

/blog/?p=1915

February 19, 2012 14:59:44

/blog/2012/02/17/banks-twitter-opcashback/

February 19, 2012 14:59:44

Link to this post!

This entry was posted in Anonymous, Anonymous Hackers, AntiSec, Black Hats, Brute Force Attack, Cyber Notebook, Cyber Threats, Cyber Tools. Bookmark the permalink.
The LulzSec Boat is Back 4 lulz

Posted on February 3, 2012 by gatomalo Comment

The LulzBoat is back

gAtO sAy – The boy’s and girls from Lulzboat pirates are back and planning something new. We all remember the 50 days of lulz this crew did some real damage. Now they have come out of retirement and recruiting. First they hack an FBI transmission -http://pastebin.com/8G4jLha8 and we know this is true because (http://s.tt/15wY5 -HACKTIVIST GROUP Anonymous has plundered a conference call from the US Federal Bureau of Investigation (FBI) and posted it on Youtube.) we see the results in the media. This is a major score hacking and FBI communication this groups has grown up and now plays with very dangerous toys.

We have decided to congregate here :

via Tor http://4eiruntyxxbgfv7o.onion/snapbbs/76211f31/

please DM a user/pass you wish to use or one can be provided to you if you so wish :http://twitter.com/lulzfinancial or lulzfinancial@hushmail.com

This is how brazen this crew(z) has become of course they got it pretty much closed up. Go into Tor and cruise the world of .onion TDL if you can find them. This is the technology that dissidents use from around the world to circumvent governments guess what we can’t hack an onion site. We will eventually but today the LulzSec Pirates can do what they want and plan behind closed doors right out in the open. This must piss some people off. I’m a white hat I get to their meeting room and WAAAA I can’’t get in. break out the Backtrack5 and pounce on that door. In an .onion site things are a little different they can blink on and blink off. Sometimes you see them and sometimes they may come up in 5 minutes. The Tor network is different and new to most of us but to the LulzSec pirates it’s old hat. We have to learn gAtIcO’S -gAtO oUt

Greetings

By lulzfinancial January 15, 2012 Leave a comment

Lulz, exciting and new Just login, they’re expecting you and Lulz, a kiss on the lips Let it flow you stupid FBI battleships The Lulz Boat soon will be planning another hack The LulzBoat who is the next one you will attack? set a course for disaster, your database they will trash Lulz, not for [...]

Lulz, exciting and new -

Just login, they’re expecting you
and Lulz, a kiss on the lips
Let it flow you stupid FBI battleships

The Lulz Boat soon will be planning another hack
The LulzBoat who is the next one you will attack?
set a course for disaster, your database they will trash

Lulz, not for kids anymore
A Bitcoin account, on a foreign shore
IT’S LUUUUUULLLZZZZ

Lulz, defacing a few
Corporate sites, what’d you think they’d do?
and Lulz, th3j35t3r wants to be you
he’s a joke, christ his name means fool

The LulzBoat soon will be making another run
THe LulzBoat promising ruin for everyone

Set a course for X-Factor, Sony and PBS
Lulz, is gonna hurt like a bitch
Yeah that gaping wound is gonna need a stitch
IT’S LUUUULLLLZZZZZ
OPEN YOUR EYES IT’S LULZ!

Of course their on Twittwer, FaceBook and WordPress doing the best to look fresh and new.

http://lulzfinancial.wordpress.com/mission/

https://www.facebook.com/pages/LulzFinancial

http://pastebin.com/8G4jLha8

Link to this post!

This entry was posted in Anonymous, Anonymous Hackers, AntiSec, LulzSec - Boat People. Bookmark the permalink.
Predictive Behavioral Security Analysis part 1:

Posted on January 27, 2012 by gatomalo Comment
Predictive Behavioral Security Analysis part 1:

gAtO bEeN -watching a mouse hole called Twitter lately, it’s an OSINT Open Source Intelligence source that monitors real events in real time. OSINT – is a form of intelligence collection management that involves finding, selecting, and acquiring information from publicly available sources and analyzing it to produce actionable intelligence.

cool dashboard – internet Storm Center - http://isc.sans.edu/dashboard.html

gAtO bEeN -watching World Web War (WWW) hacktivismn has jumped started this new year, #OpMegaUpload upset lot’s of people and the organization structure of Anonymous is getting more refine. Things happened in #poland #ireland and during the middle of a DoS attack Anonymous told their warrior on twitter:

http://trendsmap.com/

“@AnonyOps: #DDOS of European Parliament must stop NOW. They’re not the ones #ACTA

Later they tweeted this: “@AnonyOps: europarl.europa.eu back up after #DDOS. Thanks for listening to logic #Anonymous.go persuade the MEPs:

http://www.msisac.org/apps/dashboard/

Command and Control in your face and people responded to this organized movement. Each new attack everyone get’s better more coordination Anonymous is growing up. Just look at the causes #SOPA #PIPA #ACTA #OpMegaUpload #poland #Ireland #SOPAIreland #France #Belgium #FreeTopiary. The Anonymous thingy has grown up it’s a social conscious mindset created, manipulated, organic, ???? leaderless ????. The evolution of this movement has spawned OWS the Occupy Wall Street political movement has it’s roots in Anonymous, but you can see the worldwide community support for this group that is anyone. This movement will grow and mature.

http://www.fsisac.com/

Think about it.

This Week gAtO Learned mUcHo-mUcHo, we have not only the technical means but now the social monitoring needs that can be used to gather information like no other time before. Of course our governments are getting in on the fun.

Homeland Security DHS- Human Factors/Behavioral Sciences Projects:
- Actionable Indicators and Countermeasures Project
- Biometric Detector Project
- Community Perceptions of Technology Panel Project
- Community Resilience Project
- Enhancing Public Response and Community Resilience Project
- Future Attribute Screening Technology (FAST) Project
- Hostile Intent Detection – Automated Prototype Project
- Hostile Intent Detection – Validation of Observable Indicators of Suspicious Behavior Project
- Human Systems Engineering Project
- Human Systems Research Project
- Insider Threat Detection Project
- Mobile Biometrics System Project
- Multi-modal Biometrics Project
- Passive Methods for Precision Behavioral Screening Project
- Predictive Screening Project
- Quantitative Psychosocial Impacts Index Project
- Rapid DNA Project
- Risk Prediction Project
- Violent-Intent Modeling and Simulation Project
http://www.dhs.gov/files/programs/gc_1218480185439.shtm

http://k.root-servers.org/

And the CIA got into the fun[1] way before it was hip to monitor the web. We know the government has all kinds of databases of all kinds of things they collect remember echelon and carnivore the FBI first grab at data. Then we yell at the CHinese for doing the same thing we did, they learned from us about gathering information about people. Now cyberspace ties us in even tighter with SMS, streaming video, encrypted mobile chats for the masses. But as more is piled on more tools are developed. Recorded Future[2] was a little geek company sucking in the data and developing Analytical tools for Intelligence forecasting and the CIA loves them.

Predictive Behavioral Security Analysis is just monitoring choice which is freedom for it is predictive and can then be manipulated to plant an idea, a spark, a tweet. “Egypt can be free” this little spark is setting the fuel for the flames that will burn in Cairo by it’s people via Twitter, Facebook and any other social media. The Arab Awakening -Arab Spring was an simple idea, manipulated in cyberspace by protester, dissidents and governments in Tunisia, Bahrain, Syria and others, we will see Iraq’s move in March of this years with it’s election, they are closing down their Internet but will the idea of freedom explode anyway. We will be monitoring this – gAtO OuT

References:

[1] CIA Invest in ‘Future’ of Web Monitorin http://www.wired.com/dangerroom/2010/07/exclusive-google-cia/

[2] https://www.recordedfuture.com/

Link to this post!
This entry was posted in Anonymous, AntiSec, Black Hats, Cyber Civilian Militia -WH, Cyber Discussion Threads, Cyber Dissident, Cyber Intelligence, Cyber Strategy, Cyber Study, Cyber Threats, human rights, Information Warefare, International Cyber Policy, Occupy Wall Street, SOPA. Bookmark the permalink.
Underground Cyber War-TangoDown OpMegaupload

Posted on January 23, 2012 by gatomalo 1 Comment
gAtO wItNeSs – LIVE International Underground Cyber War via Twitter this weekend. #Anonymous #Megaupload #OpMegaupload #TangoDown …

If you haven’t heard, police in New Zealand raided MegaUpload.com took down the site and confiscated the servers and all the materials, copyrighted or original content. Remember SOPA protest last week this raid was a SOPA raid by the New Zealand government. They used (Low Orbit Ion Canon) and other tools plus Twitter (Twitter follower could click on a link and that would launch a dDoS attack -live crowd-source enabled TangoDown attack.
http://pastebin.com/WEydcBVV
1. Twitter – @AnonymousWiki - January 19th, 2012
3. Popular file-sharing website megaupload.com gets shutdown by U.S Justice – FBI and charged its founder with violating piracy laws. Four Megaupload members were also arrested. The FBI released a press release on its website which you can view here:
  German Internet millionaire Kim Schmitz (Kim Dotcom) arrives for. a trial at a district court in Munich in these May 27, 2002 file photos. New Zealand police broke through electronic locks and cut their way into a mansion safe room to arrest the alleged kingpin of an international Internet copyright theft case and seize millions of dollars worth of cars, artwork and other goods. German national Schmitz, also known as Kim Dotcom, was one of four men arrested in Auckland on January 20, 2012, in an investigation of the Megaupload.com website led by the U.S. Federal Bureau of Investigation. Reuters
4. http://www.fbi.gov/news/pressrel/press-releases/justice-department-charges-leaders-of-megaupload-with-widespread-online-copyright-infringement
5. We Anonymous are launching our largest attack ever on government and music industry sites. Lulz. The FBI didn’t think they would get away with this did they? They should have expected us.
Anonymous Twitter feeds kept everyone informed, supporters retweeted it, joined in the attack and soon you could see the traffic increase 100% over the course of the event. The attack vector was dDoS but they manage to delete sites like cbs.com down to the bone. Another defiance stance from Anonymous and their crew(z) this weekend showing who has bad security. This is a way for Anonymous to be job creators (mEoW), because these companies need more security people fast…

**- Will these companies try and hide these attacks? Will these organization disclose if any identifiable USER INFO was compromised? – Will we see unencrypted USER INFO (credit cards -mastercard.com was tango down)in the wild of cyberspace? -**

When gAtO saw Justice.gov and http://justinbieberweb.com/ got TangoDown gAtO kNeW they meant business. When the .gov took a hit you saw thing start to happened…like Anonymous.action-24.com is a fake forum created by the authorities (FBI).

“A security expert (name withheld -Tweeted)” *** Is the (fully unsecure) #AnonGroup social network really run by #AnonOps / #Antisec ?

gAtO sEe- conspiracy theory (FBI vs Anonymous) all around this, but if this was true, or maybe a plant to throw distress amongst the Anons or to capture participants IP address. \I see some links to news Items pop up in pasterBin all the time to a blank post, one way of seeing who is following the #OpMegaupload / I still haven’t found out but I’m sure people are looking into this. Trust in the crowd-sourcing communication and tracking tools coordinating attacks and status is something any dissident groups is concern about, but that the FBI and other’s took notice of these attacks thats for sure Dude:

GOV TANGO DOWN! #Megaupload. » anonops AnonOps. “The Internet Strikes Back” is TT! » anonops AnonOps. The Internet Strikes Back #Megaupload info

At the end of the day we see the power of the people in cyber space, a world wide movement like the SOPA, OWS support. Most people don’t have a clue what’s been happening in the underground cyber war to keep it FREE. |gAtO is no judge as to the protesters wether it’s right or wrong first #SOPA blackout then this massive attack on some major companies -movers and skaters bAbY. I just want these companies to come clean and do the responsible thing, full Disclosure what happened. Protect my data or else I will not do business with you. Hacktivismn has taken a new turn and people want to belong, they want to be empowered, some are hipsters but the majority are real protesters, the new breed of (hacktivist ) that comes after this one will blow our minds.

**- 5:17 P.M. Update: RIAA.org is now down.

5:55 Update 3: Tweets indicate there may be more attacks to come this evening.

5:55 Update 3: Tweets indicate there may be more attacks to come this evening.

7:47 Update 4: Anonymous is reporting FBI.gov as down. Some people report being able to get through, but the site is clearly under a lot of stress.

8:19 Update 5: Now it’s definitely down. FBI.gov, that is. MPAA and RIAA sites are back now though

- **

A masked hacker, part of the Anonymous group, hacks the French presidential Elysee Palace website on January 20, 2012 near the eastern city of Lyon. Anonymous, which briefly knocked the FBI and Justice Department websites offline in retaliation for the US shutdown of file-sharing site Megaupload, is a shadowy group of international hackers with no central hierarchy. On the left screen, an Occupy mask is seen. Getty

Expect Us! is their motto, we better be prepared - gAtO oUt

Until this mess is clear , I hope you saved copies and can upload them to alternative sites like megaupload.com like Putlocker.com, Filebox.com or Depositfiles.com or one of the many other cyberlockers available so that people can continue to enjoy them while Megaupload is not working.

References:

Universal, RIAA, FBI, MPAA and Department of Justice Sites Go Down, Anonymous Claims Responsibility -http://www.geekosystem.com/anon-justice-universal/

Anonymous deletes CBS: Operation Megaupload continues -http://www.examiner.com/anonymous-in-national/anonymous-deletes-cbs-operation-megaupload-continues?@anonymouspress

If Megaupload is not working what happens to the files? http://www.examiner.com/video-game-in-honolulu/if-megaupload-is-not-working-what-happens-to-the-files?@anonymouspress

Anonymous tricked people into joining Web site attacks - http://news.cnet.com/8301-27080_3-57363103-245/anonymous-tricked-people-into-joining-web-site-attacks/

MegaUpload Photo’s of the Bust - http://cryptome.org/2012-info/megaupload/0051.htm

TangoDown 4 opMegaUpload -List

CBS.com

http://warnerbros.com

http://www.vivendi.com/

mastercard.com

fightprivacy.com

universalmusic.com

http://paidcontent.co.uk/

http://store.warnerbrosshop.com/

wando.com.br

Justice.gov

http://justinbieberweb.com/

http://www.europarl.europa.eu/

http://ms.gov.pl/ Poland

http://universalmusic.es/

http://www.brasilia.df.gov.br/

http://www.fbi.gov/

Department of Justice http://www.justice.gov/

http://www.riaa.com/

http://www.universalmusic.com/

http://www.wmg.com/

http://www.BMI.com/

http://www.mpaa.org/

Motion Picture Association of America (MPAA.org) Universal Music (UniversalMusic.com) Belgian Anti-Piracy Federation (Anti-piracy.be/nl/) Recording Industry Association of America (RIAA.org) Federal Bureau of Investigation (FBI.gov) HADOPI law site (HADOPI.fr) U.S. Copyright Office (Copyright.gov) Universal Music France (UniversalMusic.fr) Senator Christopher Dodd (ChrisDodd.com) Vivendi France (Vivendi.fr) The White House (Whitehouse.gov) BMI (BMI.com) Warner Music Group (WMG.com)

Brazil - MEGA TANGO DOWN

http://pastebin.com/H4NpqCDC -

Invadimos denovo : http://imgur.com/6bmFe. Havittaja – @Havittaja – www.twitter.com/Havittaja -The evilc0de – @theevilc0de – www.twitter.com/theevilc0de -Todos os servidores foram desligados -MEGA TANGO DOWN -(TODOS DEVEM ESTAR OFFLINE AGORA 22/01/2012 19:47)

?antigo.se.df.gov.br (OFFLINE)

?brasiliasustentavel.seduma.df.gov.br (OFFLINE)

?www.admjardimbotanico.df.gov.br (OFFLINE)

?www.agecom.df.gov.br (OFFLINE)

?www.agenciabrasilia.df.gov.br (OFFLINE)

?www.aguasclaras.df.gov.br (OFFLINE)

?www.arpdf.df.gov.br (OFFLINE)

?www.bandeirante.df.gov.br (OFFLINE)

www.brasilia.df.gov.br (OFFLINE)

www.brasiliatur.df.gov.br (OFFLINE)

www.brazlandia.df.gov.br (OFFLINE)

www.candangolandia.df.gov.br (OFFLINE)

www.capitaldigital.df.gov.br (OFFLINE)

www.carnaval.df.gov.br (OFFLINE)

www.cbhparanaiba.seduma.df.gov.br (OFFLINE)

www.ceasa.df.gov.br (OFFLINE)

www.ceilandia.df.gov.br (OFFLINE)

www.cepceilandia.df.gov.br (OFFLINE)

www.codeplan.df.gov.br (OFFLINE)

www.codhab.df.gov.br (OFFLINE)

www.coorsep.seg.df.gov.br (OFFLINE)

www.cruzeiro.df.gov.br (OFFLINE)

www.defensoria.df.gov.br (OFFLINE)

www.defesacivil.df.gov.br (OFFLINE)

www.der.df.gov.br (OFFLINE)

www.detran.df.gov.br (OFFLINE)

www.df.gov.br (OFFLINE)

www.dfdigital.df.gov.br (OFFLINE)

www.distritofederal.df.gov.br (OFFLINE)

www.educacaointegral.df.gov.br (OFFLINE)

www.emater.df.gov.br (OFFLINE)

www.escoladegoverno.seplag.df.gov.br (OFFLINE)

www.esporte.df.gov.br (OFFLINE)

www.etc.se.df.gov.br (OFFLINE)

www.etc.sect.df.gov.br (OFFLINE)

www.fap.df.gov.br (OFFLINE)

www.fhb.df.gov.br (OFFLINE)

www.gama.df.gov.br (OFFLINE)

www.gdf.df.gov.br (OFFLINE)

www.gdfdireto.df.gov.br (OFFLINE)

www.governo.df.gov.br (OFFLINE)

www.guara.df.gov.br (OFFLINE)

www.hbdf50anos.df.gov.br (OFFLINE)

www.ibram.df.gov.br (OFFLINE)

www.inas.df.gov.br (OFFLINE)

www.iprev.df.gov.br (OFFLINE)

www.itapoa.df.gov.br (OFFLINE)

www.jardimbotanico.df.gov.br (OFFLINE)

www.juventude.df.gov.br (OFFLINE)

www.lagonorte.df.gov.br (OFFLINE)

www.lagosul.df.gov.br (OFFLINE)

www.matricula.df.gov.br (OFFLINE)

www.metro.df.gov.br (OFFLINE)

www.nahora.df.gov.br (OFFLINE)

www.novacap.df.gov.br (OFFLINE)

www.orgaos.df.gov.br (OFFLINE)

www.ouvidoriageral.df.gov.br (OFFLINE)

www.paranoa.df.gov.br (OFFLINE)

www.parceirosdaescola.df.gov.br (OFFLINE)

www.parkway.df.gov.br (OFFLINE)

www.pedala.df.gov.br (OFFLINE)

www.pg.df.gov.br (OFFLINE)

www.planaltina.df.gov.br (OFFLINE)

www.prg.df.gov.br (OFFLINE)

www.procon.df.gov.br (OFFLINE)

www.protec.df.gov.br (OFFLINE)

www.recanto.df.gov.br (OFFLINE)

www.revista.seduma.df.gov.br (OFFLINE)

www.riachofundo.df.gov.br (OFFLINE)

www.riachofundoii.df.gov.br (OFFLINE)

www.sa.df.gov.br (OFFLINE)

www.samambaia.df.gov.br (OFFLINE)

www.santamaria.df.gov.br (OFFLINE)

www.saosebastiao.df.gov.br (OFFLINE)

www.saude.df.gov.br (OFFLINE)

www.scia.df.gov.br (OFFLINE)

www.scs.df.gov.br (OFFLINE)

www.sde.df.gov.br (OFFLINE)

www.sdet.df.gov.br (OFFLINE)

www.se.df.gov.br (OFFLINE)

www.seade.df.gov.br (OFFLINE)

www.seapa.df.gov.br (OFFLINE)

www.sect.df.gov.br (OFFLINE)

www.sedest.df.gov.br (OFFLINE)

www.seduma.df.gov.br (OFFLINE)

www.sehab.df.gov.br (OFFLINE)

www.sejus.df.gov.br (OFFLINE)

www.semarh.df.gov.br (OFFLINE)

www.seops.df.gov.br (OFFLINE)

www.seplag.df.gov.br (OFFLINE)

www.setur.df.gov.br (OFFLINE)

www.sga.df.gov.br (OFFLINE)

www.sia.df.gov.br (OFFLINE)

www.slu.df.gov.br (OFFLINE)

www.so.df.gov.br (OFFLINE)

www.sobradinho.df.gov.br (OFFLINE)

www.sobradinhoii.df.gov.br (OFFLINE)

www.ssp.df.gov.br (OFFLINE)

www.st.df.gov.br (OFFLINE)

www.sudoeste.df.gov.br (OFFLINE)

www.taguatinga.df.gov.br (OFFLINE)

www.tcb.df.gov.br (OFFLINE)

www.varjao.df.gov.br (OFFLINE)

www.vice.df.gov.br (OFFLINE)

www.visitbrasilia.df.gov.br (OFFLINE)

www.vlt.df.gov.br (OFFLINE)

Link to this post!
This entry was posted in Anonymous, Anonymous Hackers, AntiSec, Black Hats, Cyber Civilian Militia -WH, Cyber Dissident, Cyber Reputation, Cyber Strategy, Cyber Threats, Cyber Warfare, Hackers, Hacks, Hacktivist, Information Warefare, Political, SOPA. Bookmark the permalink.
Anon Security -How to be Anonymous

Posted on January 22, 2012 by gatomalo 1 Comment
gAtO FoUnD – the Anon Security data sheet and it gives some great advise on how to be safe and Anonymous when you go online. We can all learn something by looking at some of these methods.

-gAtO OuT

How

How to secure your computer and surf fully Anonymous BLACK-HAT STYLE http://t.co/QkpF2J1V

1) Anonymous Surfing

Any conversation about anonymous browsing should start with Tor(The Onion Router).

Simply visit: https://www.torproject.org/download/download-easy.html.en

2) Anonymous Email

It’s fun: https://www.anonymousspeech.com/default.aspx

3) Anonymous Funding

Bitcoin is awesome and anonymous.

See more: http://www.weusecoins.com/

4) Anonymous Hosting and Registration:

Learn more here: https://www.anonymousspeech.com/anonymous_domain.aspx

5) Anonymous Blogging

It’s great to blog anonymously and there are several outlets for this.

read more: http://www.problogger.net/archives/2010/07/04/anonymous-blogging-101-a-quick-and-dirty-primer/

Ebooks Sites: General: http://www.freebookspot.cc http://doc.hackbbs.org/

Private Search Engines: (Recommended)https://ixquick.com/

Profile Information Websites: http://www.pipl.com http://www.anywho.com/http://www.zabasearch.com/

Governments/business Web sites: http://www.hoovers.com http://finance.yahoo.com http://www.sec.gov/edgar.shtml http://www.uspto.gov

Background Checks And Other personal information: http://www.choisepoint.com http://www.ussearch.com http://www.zabasearcg.com

Whois: http://centralops.net/co/ http://www.betterwhois.com http://www.allwhois.com http://www.whois.net http://www.godaddy.com http://www.dnstools.com Hacking Websites: English: http://www.hackcommunity.com/
French: http://www.deathnote55.com/http://www.newbiecontest.org/ http://hackbbs.org/index.php http://www.ouah.org/ http://www.bases-hacking.org/ Programming: General English: http://www.java2s.com/
General French:http://www.siteduzero.com
http://www.python-forum.org

http://www.learnpython.org/
General C: http://www.cprogramming.com/

General: C++:

http://www.cplusplus.com/doc/tutorial/
General Javascript:http://javascript.about.com/od/learnjavascript/a/tut00.htm

http://www.w3schools.com/js

General VBScript: http://www.w3schools.com/vbscript/default.asp
General Assembly: http://win32assembly.online.fr/tutorials.html

General Html/CSS:http://www.sitepoint.com/html-css-beginners-guide/ http://www.w3schools.com/html http://www.web-source.net/html_codes_chart.htm http://www.quackit.com/

General VB/VB.NET:VB/VB.NET:http://www.vbtutor.net/ http://www.vbforums.com/ http://www.pickatutorial.com/ http://vb.net-informations.com/ http://www.vbdotnetforums.com/ http://www.homeandlearn.co.uk/NET/vbNET.html http://extreme-vb.net http://www.startvbdotnet.com http://www.vbdotnetheaven.com http://www.java2s.com/Code/VB/CatalogVB.htm http://www.vbaccelerator.com/http://programmervb.wordpress.com/ General Java: http://www.javabeginner.com/

General PHP:http://php.net/

Online Tools/Etc…: SMS Sender: http://www.freesmsbundles.com/http://www.sendmassage.com http://m.websmsonline.com/index.php http://pumpsms.com/index.php

Fake Mailer: http://emkei.cz/

Javascript Debugger/Tester: http://jslint.com/ http://jsbin.com

Online Admin Page Finder: http://sc0rpion.ir/af/

Online MD5 Hash Cracker: http://md5.Gromweb.com md5.HashCracking.com
Anonymous/Disposable emails : http://www.yopmail.com http://www.email-wgwerf.de/wegwerfemail-liste.html

Virus Online scanner: http://onlinelinkscan.com/
TOR
Anchor
HotSpot Shield
VPN Reactor
Best Free VPN
ProXPN
Hide My IP

Link to this post!
This entry was posted in Anonymous, Anonymous Hackers, AntiSec, Cyber Notebook, Cyber Study, Cyber Tools, Hackers, Hacktivist, Notes to Myself. Bookmark the permalink.
Antisec Teaser MERRY LULZXMAS

Posted on December 30, 2011 by gatomalo Comment
Antisec Teaser 12-25 - http://pastebin.com/bQ2YHDdw

Antisec Teaser 12-26 - http://pastebin.com/q5kXd7Fd

Antisec Teaser 12-27 - http://pastebin.com/vuMypejL

Antisec Teaser 12 -29 - http://pastebin.com/f7jYf5Wd
1. #AntiSec™ (wtf? we hate copyright…)
4. > Can I haz candy?
5. > :3
7. Greetings Global Pirates! Having fun riding the waves of the Global Financial Meltdown? We sure are.
9. Did Bradley Manning get his fancy LulzXmas dinner yet?
11. hm… guess not.
13. Still trying to lock him up for life?
14. Still think we’re just joking around?
15. That’s OK. The time for talk is over.
17. MERRY LULZXMAS and a Lulz New Year
  
  So now let’s talk… about cocks:
18. It’s time to dump the full 75,000 names, addresses, CCs and md5 hashed passwords to every customer that has ever paid Stratfor.
19. But that’s not all: we’re also dumping ~860,000 usernames, email addresses, and md5 hashed passwords for everyone who’s ever registered on Stratfor’s site.
21. > …
22. > WTF?!?!
23. > Did you say 860,000 accounts????
24. > Did you notice 50,000 of these email addresses are .mil and .gov?
25. > fuck men…we’re pretty much screwed up now…tinfoil hat please here..
26. > yeah, for the lulz \:D/
27. > sounds illegal…
28. * /me phones police
29. > holy shit, like frontal crash at 180mph!!!
30. > :P
31. > lol xD
33. We almost have sympathy for those poor DHS employees and australian billionaires who had their bank accounts looted by the lulz (orly? i just fapped).
34. But what did you expect? All our lives we have been robbed blindly and brutalized by corrupted politicians, establishmentarians and government agencies sex shops, and now it’s time to take it back.
36. We call upon all allied battleships, all armies from darkness, to use and abuse these password lists and credit card information to wreak unholy havok upon the systems and personal email accounts of these rich and powerful oppressors. Kill, kitties, kill and burn them down… peacefully. XD XD
38. Is that it? 0h hell n0.
40. On New Years Eve, there will be “noise demonstrations” in front of jails and prisons all over the world to show solidarity with those incarcerated.
41. On this date, we will be launching our contributions to project mayhem
42. by attacking multiple law enforcement targets from coast to coast.
43. That’s right: once again we bout to ride on the po po. Problem, officer? umad?
45. Candiez, pr0n and cookies for LulzXmas:
Greetings fellow global pirates,

The halls are decked with lulz, AnonSanta’s battle sleigh is re-filled, and lulz lizards worldwide are awaiting his arrival. Wait no longer, good denizens of the Internet, it’s time for another round of the LulzXmas festivities.

But first, tell us, have you enjoyed the complete obliteration of Stratfor live on IRC and Twitter? We have. We also laughed heartily whilst these so-called protectors of private property scrambled desperately to recover the sensitive information of all the customers who they wronged by failing to use proper security precautions. Stratfor’s Terms of Service stated, “Security: The personally identifiable information we collect about you is stored in limited access servers. We will maintain safeguards to protect the security of these servers and your personally identifiable information.” Yet Stratfor lazily stored credit card information and corresponding data unencrypted. Is the irony palpable yet?

Continuing the week long celebration of wreaking utter havoc on global financial systems, militaries, and governments, we are announcing our next target: the online piggie supply store SpecialForces.com. Their customer base is comprised primarily of military and law enforcement affiliated individuals, who have for too long enjoyed purchasing tactical combat equipment from their slick and “professional” looking website. What’s that, officer? You get a kick out of pepper-spraying peaceful protesters in public parks? You like to recreationally taser kids? You have a fetish for putting people in plastic zip ties?

We had to contain our laughter when we saw these two “hacker proof” logos plastered on the SpecialForces.com website: “Scanned by GoDaddy.com: secured website” and “McAfee SECURE sites help keep you safe from identity theft, credit card fraud, spyware, spam, viruses, and online scams.” Despite the almighty powers of GoDaddy and McAfee’s logos and some reassuring words, SpecialForces.com was just no match for our hella wicked black hat voodoo. We have just one question before we continue: You mad, officer?

To be fair, at least SpecialForces.com DID store their customers’ credit card information using blowfish encryption (unlike the global intelligence and security industry “professionals” at Stratfor, who apparently remain confused as to whether their customers’ information was even encrypted or not). Nevertheless, our voodoo prevailed and we were quickly able to break back into the military supplier’s server and steal their encryption keys. We then wrote a few simple functions to recover the cleartext passwords, credit card numbers, and expiration dates to all their customers’ cards. That’s how we roll.

In reality, for the past few months, we have been in possession of approximately 14,000 passwords and 8000 credit cards from SpecialForces.com. Unfortunately a former comrade leaked the password list early, and the full story on this owning will be told in our upcoming zine. Until then, feast upon one hell of a juicy text file.

We’ll continue to have ourselves a merry LulzXmas at the expense of capitalist pigs, corrupt public officials and all those third parties who cater to the continued oligarchic elite worldwide. We are your secretaries, your janitors, your babysitters, your IT guys, your bus drivers, your maids, your hard-working, driven and determined fellow humans. We could be sitting next to you in a coffee shop, scanning your goods at a department store or even fixing your busted-ass computer. We are here to stay, and by now, you had better damn well expect us, cause the time for simple “lulz” is long past.

Oh, and by the way: Did Bradley Manning get his fancy holiday meal yet? Might want to hurry up before we hit even more targets.

Link to this post!
This entry was posted in Anonymous, Anonymous Hackers, AntiSec. Bookmark the permalink.
Stratfor Hack -Personal Identifiable Information

Posted on December 28, 2011 by gatomalo 1 Comment
Data Breach Affects 50,000 people; 50,277 Credit Card Numbers, 44,188 Hashed Passwords, 47,680 E-Mail addresses.

personally identifiable information:
- 50,277 Unique Credit Card Numbers, of which 9,651 are NOT expired. Note: Many credit cards are re-issued, and many credit card processors do not check the expiration date. Consequently, more than 9,651 credit card holders may still be at risk.
- 86,594 Email addresses, of which 47,680 are unique.
- 27,537 Phone Numbers, of which 25,680 are unique.
- 44,188 Encrypted Passwords, of which roughly 50% could be easily cracked.
- 73.7% of decrypted passwords were weak
- 21.7% of decrypted passwords were medium strength
- 4.6% of decrypted passwords were strong
- Average decrypted password length: 7.1 Characters.
- 10% of decrypted passwords were less than 5 characters long.
- Anonymous and AntiSec Hackers
  
  Only 4.8% of decrypted passwords were 10+ characters long.
- Presumably the remaining non-decrypted passwords were stronger than the decrypted subset.
- 13,973 of the addresses belonged to United States victims; the remainder belonged to individuals from around the world.
Read More …> http://www.identityfinder.com/blog/post/Identity-Finder-Releases-Detailed-Analysis-of-Personal-Information-e28098Anonymouse28099-Attack-on-Stratfor.aspx

Link to this post!
This entry was posted in Anonymous, Anonymous Hackers, AntiSec. Bookmark the permalink.

gAtO aLmOsT -got hacked

The LulzSec Boat is Back 4 lulz

Predictive Behavioral Security Analysis part 1:

Underground Cyber War-TangoDown OpMegaupload

References:

TangoDown 4 opMegaUpload -List

Brazil - MEGA TANGO DOWN

Anon Security -How to be Anonymous

Antisec Teaser MERRY LULZXMAS

Stratfor Hack -Personal Identifiable Information

Data Breach Affects 50,000 people; 50,277 Credit Card Numbers, 44,188 Hashed Passwords, 47,680 E-Mail addresses.

Categories

Recent Post

Blogroll

Twitter Feed

@gAtOmAlO2

Search Us

China Cyber Warfare Log

paper.li Newspaper

February 2012
M	T	W	T	F	S	S
« Jan
		1	2	3	4	5
6	7	8	9	10	11	12
13	14	15	16	17	18	19
20	21	22	23	24	25	26
27	28	29

References:

TangoDown 4 opMegaUpload -List

Brazil - MEGA TANGO DOWN

Data Breach Affects 50,000 people; 50,277 Credit Card Numbers, 44,188 Hashed Passwords, 47,680 E-Mail addresses.

Categories

Recent Post

Blogroll

Twitter Feed

@gAtOmAlO2

Search Us

gAtO Cloud

paper.li Newspaper