Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

No More Jail Time: LulzSec's Sabu Sentenced to Time Served
Newest First  |  Oldest First  |  Threaded View
User Rank: Ninja
5/28/2014 | 7:06:43 PM
Short time
Not much of a penalty considering the amount of time he was facing and the activities he was involved in. Granted his cooperation was extensive, but seven months doesn't seem like much.

User Rank: Ninja
5/28/2014 | 4:56:40 PM
Re: Back online
This is a dangerous precedent. Sabu is a criminal, but it has been judged as an hero.
You can trust who has betrayed his beliefs?
We will heve 100, 1000 other SABU in the incoming months ... but they will not mitigate hacktivism cyber threat for sure.
The only way to face hacktivism is to listen their voice ... you cannot arrest an ideology.
Sara Peters
Sara Peters,
User Rank: Author
5/28/2014 | 3:09:36 PM
Re: Back online
@Whoopty  That's a great point. I wonder if he'll go into witness protection. And I also wonder how good the US marshalls are at the electronic side of witness protection. I mean, if anyone could track down a person who changed their identity, it's a team of criminal hackers.
Sara Peters
Sara Peters,
User Rank: Author
5/28/2014 | 3:07:42 PM
Re: Romancing the Hack
@Kelly  Yeah, that struck me too, as long as you choose to believe that he really did flip as quickly and eagerly as they said he did. Still, if you were facing over 20 years in prison, you'd probably want to do whatever you could to lighten your sentence.
Kelly Jackson Higgins
Kelly Jackson Higgins,
User Rank: Strategist
5/28/2014 | 12:20:49 PM
Re: Back online
Good point, @Whoopty. He may want/need to stay under the radar for a very long time.
User Rank: Ninja
5/28/2014 | 12:17:56 PM
Back online
I wonder if he'll be taking his first tentative steps back online in the next few days. Considering he's rolled over on so many other hackers, he'll have to watch his digital back for a long time to come. Must be pretty nerve racking. 
Kelly Jackson Higgins
Kelly Jackson Higgins,
User Rank: Strategist
5/28/2014 | 7:50:38 AM
Re: Romancing the Hack
What was most interesting to me in this case was how quickly Sabu flipped, and also gave up info on other illegal hacks he had done that the the FBI didn't even know about. 
User Rank: Ninja
5/27/2014 | 10:36:12 PM
Romancing the Hack
While the idea of renegade teams of cyber-warriors may sound appealing, ultimately the classic and safest hackers run solo and silent.  Say what you will about the actual skill-set of LulzSec, their real Achilles heel was the group itself.  With that many official, semi-official and wannabe members, there was bound to be poorly thought-out activities, arrests and sell-outs.

I think more of these bright young minds would be happier on the "white" side of the hack, rather than out there romancing it, when they realize prison, paranoia and the persistence of agencies like the CIA and FBI will no longer be part of their future.  Being in love with tech and with the hack doesn't mean you can't also be in love with your fellow human.  Let's see some more good being done out there; hack a solution to global sex trafficking or famine.

I Smell a RAT! New Cybersecurity Threats for the Crypto Industry
David Trepp, Partner, IT Assurance with accounting and advisory firm BPM LLP,  7/9/2021
Attacks on Kaseya Servers Led to Ransomware in Less Than 2 Hours
Robert Lemos, Contributing Writer,  7/7/2021
It's in the Game (but It Shouldn't Be)
Tal Memran, Cybersecurity Expert, CYE,  7/9/2021
Register for Dark Reading Newsletters
White Papers
Current Issue
Everything You Need to Know About DNS Attacks
It's important to understand DNS, potential attacks against it, and the tools and techniques required to defend DNS infrastructure. This report answers all the questions you were afraid to ask. Domain Name Service (DNS) is a critical part of any organization's digital infrastructure, but it's also one of the least understood. DNS is designed to be invisible to business professionals, IT stakeholders, and many security professionals, but DNS's threat surface is large and widely targeted. Attackers are causing a great deal of damage with an array of attacks such as denial of service, DNS cache poisoning, DNS hijackin, DNS tunneling, and DNS dangling. They are using DNS infrastructure to take control of inbound and outbound communications and preventing users from accessing the applications they are looking for. To stop attacks on DNS, security teams need to shore up the organization's security hygiene around DNS infrastructure, implement controls such as DNSSEC, and monitor DNS traffic
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
PUBLISHED: 2023-05-26
Craft is a CMS for creating custom digital experiences. Cross site scripting (XSS) can be triggered by review volumes. This issue has been fixed in version 4.4.7.
PUBLISHED: 2023-05-26
Django-SES is a drop-in mail backend for Django. The django_ses library implements a mail backend for Django using AWS Simple Email Service. The library exports the `SESEventWebhookView class` intended to receive signed requests from AWS to handle email bounces, subscriptions, etc. These requests ar...
PUBLISHED: 2023-05-26
Highlight is an open source, full-stack monitoring platform. Highlight may record passwords on customer deployments when a password html input is switched to `type="text"` via a javascript "Show Password" button. This differs from the expected behavior which always obfuscates `ty...
PUBLISHED: 2023-05-26
Craft is a CMS for creating custom digital experiences on the web.The platform does not filter input and encode output in Quick Post validation error message, which can deliver an XSS payload. Old CVE fixed the XSS in label HTML but didn’t fix it when clicking save. This issue was...
PUBLISHED: 2023-05-26
GDSDB infinite loop in Wireshark 4.0.0 to 4.0.5 and 3.6.0 to 3.6.13 allows denial of service via packet injection or crafted capture file