Episode 431 - SwagSec, Operation Tuleta, Grope Back, LulzSec, Rustock Bounty & Anonymous Arrests
InfoSec Daily Podcast Episode 431 for July 19, 2011. Tonight's podcast is hosted by Rick Hayes, Karthik Rangarajan, Geordy Rostad, and Varun Sharma.
Announcements:
Speak With EFF Attorneys About Your Security Research
When: Contact EFF by today, July 22nd to schedule a meeting in Vegas
Where: Black Hat, BSides LasVegas, DEF CON
https://www.eff.org/deeplinks/2011/07/speak-eff-attorneys-las-vegas-security-research
SANS Security 464 – Hacker Detection for Systems Administrators with Continuing Education Program – Russell Eubanks
Where: Atlanta, GA
When: Tue, Aug 09 to Wed, Aug 10
https://www.sans.org/mentor/details.php?nid=25573
#BruCon
When: Sept 19-22, 2011
Where: Brussels, Belgium
http://blog.brucon.org/2011/02/confirmation-of-brucon-dates.html
@DerbyCon
When: September 30th – October 2, 2011
Where: Louisville, KY
http://www.derbycon.com/
SANS Mentoring: Forensics 408 – Computer Forensic Essentials
When: Wednesday, October 12, 2011 – Wednesday, December 14, 2011
Where: Atlanta, GA
Discount Code: ISDPod15 (15% discount)
http://www.sans.org/mentor/details.php?nid=25504
Hack3rCon 2011
When: October 21st-23rd, 2011
Where: the Charleston House Hotel and Conference Center
http://www.hack3rcon.org/
2011 Fall Information Security Conference
When: November 8 – 9, 2011
Where: Atlanta, GA (Loudermilk Conference Center)
http://www.gaissa.org
Stories
Source: http://threatpost.com/en_us/blogs/lady-gaga-website-latest-string-celebrity-hacks-071811
A collective of hackers known as SwagSec claims to have broken into the UK website of Lady Gaga and made off with information on thousands of registered fans, according to a report from the UK's Mirror.
The hack, just the latest in a string of attacks on high profile artists, was made public after the group responsible posted the stolen data, including names and email addresses online.
The site, ladygaga.co.uk, was online Monday and no mention was made of the breach. But Gaga (née Stefani Joanne Angelina Germanotta) is said to be "upset" by the hack and hopeful that a police investigation will "get to the bottom of how this was allowed to happen,” the Mirror reported, quoting a source close to the singer. Gaga’s record label, Universal, released a statement acknowledging that attackers took a copy of the site's database as well as the e-mail, first and last names of registered users. It claims to have informed all affected persons.
A police investigation is being carried out by detectives from Scotland Yard's Specialist Crime Directorate. It is separate from the phone hacking investigation. The team of officers from Operation Tuleta are looking at the activities of individuals who were paid by News International, including a firm of private detectives offering "ethical hacking".
Officers are understood to be collecting evidence about the activities of a former Army intelligence officer who is said to have offered hacking services to the journalists. The probe was prompted by allegations that Martin McGuinness, the Sinn Fein MP, was a British spy. They first surfaced in Irish newspapers five years ago and were vehemently denied by Republicans.
Unpublished documents relating to the claims have now been unearthed by Scotland Yard.
Source: http://www.cbsnews.com/stories/2011/07/16/main20080110.shtml
Authorities say a Colorado woman who allegedly groped a female Transportation Security Administration agent at Phoenix's international airport is facing a felony count of sexual abuse.
Phoenix police say 61-year-old Yukari Mihamae is accused of grabbing the left breast of the unidentified TSA agent Thursday afternoon at an airport checkpoint.
TSA staff say Mihamae refused to be go through passenger screening and became argumentative before she squeezed and twisted the agent's breast with both hands.
Police were called and say Mihamae admitted grabbing the TSA agent and continued to argue with officers before she was arrested.
Source: http://www.theregister.co.uk/2011/07/19/sun_hack_more_lulz/
The hacktivists behind a hack on The Sun's website claim to have extracted an email archive which they plan to release later on Tuesday.
News International's systems were hacked on Monday night. As a result, visitors to The Sun's website were redirected towards a fake story on the supposed death of Rupert Murdoch by infamous hacktivist collective LulzSec. The group also redirected visitors to the main News International website to the LulzSec Twitter feed. In addition, the hack may have allowed LulzSec to gain access to News International's email database.
Sabu, a prominent member of LulzSec, said via Twitter that the group was sitting on emails of News International staffers that it planned to release on Tuesday.
In the meantime, Sabu released email login details for former News International chief exec Rebekah Brooks, a central figure in the News of the World voicemail-hacking scandal.
Brooks (then called Wade), edited The Sun between 2003 and 2009, and – at least according to LulzSec – had been using the password 63000 to access her email account at the paper. As IT blogger John Graham-Cumming points out, 63000 is the same number as the text tip-off line used by the Sun.
Microsoft offered the $250,000 (£155,000) bounty for information leading to the arrest and criminal conviction of botnet controllers on Monday. "While the primary goal for our legal and technical operation has been to stop and disrupt the threat that Rustock has posed for everyone affected by it, we also believe the Rustock bot herders should be held accountable for their actions," Richard Boscovich, senior attorney in the Microsoft Digital Crimes Unit, said in a blog post.
Source: http://www.justice.gov/opa/pr/2011/July/11-opa-944.html