No love for Lulz as cops crack down on cybercrooks

Dark Reading Staff, Dark Reading

December 13, 2012

6 Min Read

It's easy enough to focus on the major breaches of 2012 and feel a certain hopelessness. But this year was a banner one for busting black hat bad guys. Several major international operations reaped a harvest of hackers, from big-shot Russian gangsters to bored British teens. This was the year they locked up the world's biggest pirate in Sweden. And the gangly Anonymous guy who probably should have worn the mask but didn't. The thoughtful cybercriminal should be sure to consider some questions in the year ahead. Who can you trust? How long can you run? Is bragging really worth it? And, of course, when a hacker's girl displays her breasts, is she showing more than she knows?

[Which applications and vendor dominated the vulnerability and exploit headlines in 2012? See The Vulnerability 'Usual Suspects' Of 2012.]

Sabu's Lulzsec Pals: Ryan Ackroyd, Jake Davis, Darren Martyn, Jeremy Hammond, and Donncha O'Cearrbhail
Thanks, in large part, to the cooperation of hacker Hector Xavier Monsegur, better known as Sabu, who was arrested last year for his escapades as an Anonymous hacker, authorities in the U.S. and Europe arrested five of his compatriots in an international sting that shook up Lulzsec and Anonymous in both the U.S. and the U.K. The sweep caught up a disparate group of cybercriminals from O'Cerrbhail and his attacks against the Irish government, to Hammond, the self-proclaimed "anarchist-communist" who launched a devastating attack against Stratfor, to large-scale collaborative efforts targeting companies and nation states.

Sony's Revenge: Raynaldo Rivera
After the arrest last year of Rivera's Lulzsec partner in crime, Cody Kretsinger, it was only a matter of time before the law caught up with Rivera. He surrendered to the FBI following an indictment by a grand jury for hacking Sony Pictures using a proxy server to carry out a SQL injection attack in May 2011 that lead to the release of unencrypted passwords of more than 1 million Sony customers. In October Rivera pleaded guilty to the crime and will learn his sentencing in the spring. Originally up for 15 years in jail, he'll be recommended for a reduced sentence in exchange for his guilty plea.

The Hacker Formerly Known As ACK!3STX
Between January and March 2012, an unnamed 15-year-old boy burned the midnight oil in order to hack a remarkable 259 websites both in his home country of Austria and abroad, authorities said. Unlike financially or politically motivated attackers, the boy took a shotgun approach, breaching databases and defacing websites seemingly at random. His industriousness outran his thoroughness and Austrian police were able to take him into custody. His exact identity has been protected due to his age and the fact that Europol has launched a more detailed investigation.

The Higinio O.Ochoa Hacker "Bust"
Is exhibitionism a driving force behind hactivism? After hacking a number of U.S. law enforcement websites, a man calling himself W0rmer and professing an affiliate association with Anonymous posted a racy photo of his girlfriend wearing a sign taunting authorities in l337 speak. The FBI was able to take the image of the woman's scantily clad breasts, examine the (ahem) EXIF data of the photo, and follow GPS coordinates to Australia. From there, the trail lead back to 30-year-old Texas Linux admin Higinio Ochoa. The alleged CabinCr3w hacker was sentenced to 27 months in prison and ordered to pay $14,000 in restitution. No charges were pressed against the girlfriend, later identified as Kyle Gardner.

Pirate Bay Founder Arrg-rested: Gottfrid Svartholm
No stranger to legal dilemmas, Pirate Bay co-founder Gottfrid Svartholm found himself in even deeper waters this year. Swede Svartholm was convicted of a number of different copyright law violations in 2008, but left the country and has been threatened with jail time for failing to appear at hearings. The pressure on Svartholm increased when Swedish prosecutors announced this year that the fugitive is suspected to have participated in a hack against Logica, an IT company that works with the Swedish government. The allegations of "aggravated fraud" lead to Svartholm's arrest in his riverside apartment in Phnom Penh, Cambodia. Russian Bot Herder: Dmitry Zubakha
Russian hacker and bot herder Dmitry Zubakha finally had the law catch up with him after a 2008 spree of DDoS attacks against e-commerce giants Amazon, eBay, and Priceline. In addition, he and a co-conspirator are alleged to have stolen more than 28,000 credit card numbers. In a move reminiscent of Al Capone's bust for tax evasion, Zubakha was arrested under an indictment for using the credit card and identity of one man in the small town of Lake Stevens, Washington. The 25-year-old is awaiting extradition from Cypress.

Credit Card Sting: Nikhil Kolbekar
The FBI's massive two-year Operation Card Shop rounded up dozens of cybercriminals this year, accused of stealing and selling credit card data which is then used for fraudulent purposes. The sweep targeted criminals in 12 countries. Kobekar was allegedly an industrious merchant specializing in "fulls," or complete credit card and identity information. On the side, he offered RDP info that would allow the buyer to access computers in several countries scattered across the globe. Kobekar was nabbed in Mumbai, India. The FBI hopes to extradite the subject to the US.

Crime And Punishment In Hacker Land: Hermes
A Russian man known only as Hermes was arrested last summer for operating a massive botnet focused on banking sites. The Russian interior Ministry estimates the number of compromised machines at 6 million or more, making it one of the largest botnets ever. Authorities say Hermes used a variation of Carberp and extensive phishing attempts to create upwards of 100,000 zombies per day. The unnamed 22-year old man allegedly used the stolen funds to live the high life, becoming known for his flashy clothes, cars, and lavish vacations.

You Can't Elude Agent Smith: Barrett Brown
The writer who adamantly denied being a spokesman for Anonymous yet seemed to find himself speaking for the group fairly often got booked with three federal charges in September. It's alleged that Brown feverishly and very publically threatened FBI agent Robert Smith with a wide variety of harm, physical and otherwise. His arrest became a bit of an internet phenomenon of its own: Brown was participating in an online chat at the time and in a YouTube video, the shouts of the agents can be heard over Brown's cries in the background. Brown has been slapped with additional charges stemming from the Stratfor breach earlier in the year.

Bitter Pill For TeaMp0isoN
After a few years of impressive accomplishments, Lulzsec-rival TeaMp0isoN hit a bit of a rough patch. Junaid Hussain, a budding young hactivist who, as a teenager, allegedly hacked and posted former UK Prime Minister Tony Blair's personal address book was arrested in Birmingham, England. The same man is suspected of clogging the national anti-terrorist hotline for 24 hours. Additionally, MLT, a17-year-old represented as a TeaMp0isoN spokesman, was arrested in Newcastle and detained on unspecified charges related to the group. It's alleged that other members have been arrested in the UK and St. Petersburg, Russia. The group also claimed responsibility for attacking pro-Israel sites or those critical of Islam.

Have a comment on this story? Please click "Add Your Comment" below. If you'd like to contact Dark Reading's editors directly, send us a message.

About the Author(s)

Dark Reading Staff

Dark Reading

Dark Reading is a leading cybersecurity media site.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights