Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Attacks/Breaches

Scotland Yard Busts Alleged LulzSec Mastermind

British police, in a joint investigation with the FBI, arrest a teenager on charges of computer misuse and fraud.

10 Massive Security Breaches
(click image for larger view)
Slideshow: 10 Massive Security Breaches
British authorities, working in cooperation with the FBI, announced on Tuesday that they'd arrested an alleged mastermind of the LulzSec hacking group.

"Officers from the Metropolitan Police Central e-Crime Unit (PCeU) have arrested a 19-year-old man in a pre-planned intelligence-led operation," according to a statement released by Britain's Metropolitan Police Service, aka Scotland Yard. "The arrest follows an investigation into network intrusions and Distributed Denial of Service (DDoS) attacks against a number of international business and intelligence agencies by what is believed to be the same hacking group."

The suspect, arrested in Essex--to the north of London--on chargers of computer misuse and fraud offenses, was on Tuesday being questioned at a central London police station. According to the Metropolitan Police, "searches at a residential address in Wickford, Essex, following the arrest at the premises last night, have led to the examination of a significant amount of material. These forensic examinations continue."

The pressure on British authorities to stop LulzSec had increased dramatically on Monday, after LulzSec released a statement via Pastebin saying that it was preparing to release the full results of the country's 2011 census via torrent feed on Pirate Bay. If true, that could contain information relating to more than 62 million people.

"We have blissfully obtained records of every single citizen who gave their records to the security-illiterate UK government for the 2011 census," said the LulzSec statement. "We're keeping them under lock and key though ... so don't worry about your privacy (... until we finish re-formatting them for release)."

Could this arrest, however, now spell the end of LulzSec? Earlier this month, a report that a member of the group had been arrested appeared to be false. Furthermore, the group has so far appeared expert at not only hacking websites, but getting away with it. Experts have said that the group was likely formed by underground hacking experts, given the skill with which they seemed to remain hidden.

Furthermore, given that LulzSec appears to communicate via encrypted IRC channels, the members may not even know each other's real identities. As a result, one arrested member might not spell the end of the group's activities, which have recently expanded to include a partnership with the Anonymous hacking collective. Furthermore, according to LulzSec exposed, a new blog that's been analyzing LulzSec public IRC chats and posts, five of the main participants in LulzSec go by the handles Kayla, BarretBrown, Joepie, Nakomis, and Topiary. Three are reportedly from the United States or Canada, one from Sweden and the other from the Netherlands.

In terms of LulzSec's longevity, provoking authorities, including the U.S. Senate, the FBI, and the CIA, with hacks and taunts, can't have helped the group avoid a serious effort by law enforcement agencies to shutter the hacking group.

"The controversial LulzSec group has been playing a dangerous game--their Twitter account, which has more than 220,000 followers, has become increasingly vocal--embarrassing computer crime authorities and large organizations around the world with their attacks," blogged Graham Cluley, senior technology consultant at Sophos.

"There has been much speculation recently regarding who might be behind LulzSec--if the group has now been cracked then it will send a strong message to others thinking about engaging in their own hacks or denial-of-service attacks. What everyone will now be looking for is whether LulzSec's Twitter account is updated, and if so--what does it say about the arrest?" said Cluley.

As of press time on Tuesday, the LulzSec Twitter feed hadn't yet been updated for the day.

In the new, all-digital Dark Reading supplement: What industry can teach government about IT innovation and efficiency. Also in this issue: Federal agencies have to shift from annual IT security assessments to continuous monitoring of their risks. Download it now. (Free registration required.)

 

Recommended Reading:

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
COVID-19: Latest Security News & Commentary
Dark Reading Staff 8/3/2020
'BootHole' Vulnerability Exposes Secure Boot Devices to Attack
Kelly Sheridan, Staff Editor, Dark Reading,  7/29/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Special Report: Computing's New Normal, a Dark Reading Perspective
This special report examines how IT security organizations have adapted to the "new normal" of computing and what the long-term effects will be. Read it and get a unique set of perspectives on issues ranging from new threats & vulnerabilities as a result of remote working to how enterprise security strategy will be affected long term.
Flash Poll
The Threat from the Internetand What Your Organization Can Do About It
The Threat from the Internetand What Your Organization Can Do About It
This report describes some of the latest attacks and threats emanating from the Internet, as well as advice and tips on how your organization can mitigate those threats before they affect your business. Download it today!
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-4396
PUBLISHED: 2020-08-04
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1...
CVE-2020-4410
PUBLISHED: 2020-08-04
IBM Jazz Foundation and IBM Engineering products could allow an authenticated user to send a specially crafted HTTP GET request to read attachments on the server that they should not have access to. IBM X-Force ID: 179539.
CVE-2020-4459
PUBLISHED: 2020-08-04
IBM Security Verify Access 10.7 contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data. IBM X-Force ID: 181395.
CVE-2020-4525
PUBLISHED: 2020-08-04
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 1...
CVE-2020-4542
PUBLISHED: 2020-08-04
IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-force ID: 1...