Sunday, February 20, 2011

A "security" firm gets a lesson about what the word means


This is a fascinating account -- no, make that a riveting account -- of how a 'security firm' had "its servers broken into, its e-mails pillaged and published to the world, its data destroyed, and its website defaced" -- through run-of-the-mill exploits the company was well aware of, but didn't protect itself against.

And, oh, the exploits were by the group that calls itself "Anonymous".

Great, racy story. Do read all of it.

Anonymous speaks: the inside story of the HBGary hack
By Peter Bright

It has been an embarrassing week for security firm HBGary and its HBGary Federal offshoot. HBGary Federal CEO Aaron Barr thought he had unmasked the hacker hordes of Anonymous and was preparing to name and shame those responsible for co-ordinating the group's actions, including the denial-of-service attacks that hit MasterCard, Visa, and other perceived enemies of WikiLeaks late last year.

When Barr told one of those he believed to be an Anonymous ringleader about his forthcoming exposé, the Anonymous response was swift and humiliating. HBGary's servers were broken into, its e-mails pillaged and published to the world, its data destroyed, and its website defaced. As an added bonus, a second site owned and operated by Greg Hoglund, owner of HBGary, was taken offline and the user registration database published.

0 Comments: