Quote:Update: AntiSec Exposes U.S. Soldiers' S/Ns, Passwords, Vows Attack on Monsanto
In related news, Anonymous vowed Monday to step up attacks on contractor Monsanto Comp. (MON).
Monsanto is a firm with a long and controversial history. It is accused of abusing intellectual property rights to sue small farms (allowing its patented crops to blow seeds onto their properties, then suing them); trying to bribe officials in Canada and Indonesia ; and suing dairy farmers who advertise that their milk doesn't contain growth hormones. And they also were the company responsible for spraying Agent Orange all over soldiers in Vietnam, which is thought to have led to cancer and other ailments.
Anonymous broke the news of new possible attacks, writing:
@MonsatoCo is now suing small dairy farmers for advertising that they use no growth hormones. For NOT using their product.
The operation's Twitter account "OpMonsanto", posted on June 26:
We're going to hit @MonsantoCo with something a little bit more serious than a DDoS this time around. ƒück 'em. #ExpectUs
It posted a brief press release, writing:
Over the last 2 months we have pushed the exposure of hundreds of pages of articles detailing Monsanto's corrupt, unethical, and downright evil business practices. We've created a nice go-to reference guide on piratepad/anonpad(anonpad.org/opmonsanto, backed up elsewhere), where anyone can read up on and add their own info about MonsantoCo.
We blasted their web infrastructure to shït for 2 days straight, crippling all 3 of their mail servers as well as taking down their main websites world-wide. We dropped dox on 2500+ employees and associates, including full names, addresses, phone numbers, and exactly where they work. We are also in the process of setting up a wiki, to try and get all collected information in a more centralized and stable environment. Not bad for 2 months, I'd say.
What's next? Not sure... it might have something to do with that open 6666 IRC port on their nexus server though ;)
It indeed "doxed" Monsanto's employees -- in fact it appears to have exposed the names and addresses of 2,500+ of them. How this information might be used/abused is unknown, but it could lead to at least some minor harassment.
Read the entire article at dailytech.com It's quite good and explains what is going on quite well without going into details that could jeopardize anyone personally.
Monsanto has had this coming for years in many peoples opinions, the comments on the article basically boil down to ƒück Monsanto.
Quote:On Friday, AnonymousIRC tweeted it was Happy Hacker Independence Day and dumped information from IRC Federal, a contractor for the FBI and other government agencies, to celebrate their holiday with a F**k FBI Friday. The hacktivists claimed to have "laid nuclear waste to their systems, owning their pathetic windows box, dropping their databases and private emails." The attack was waged against IRC Federal because of the company's record of "selling out their 'skills' to the US empire."Read moreblogs.computerworld.com
According to the Pastebin post, the members of Anonymous who are involved in the AntiSec hacking campaign were able to gain initial access to IRC Federal by using a SQL injection attack. The Pastebin statement was decorated with an ASCII art mushroom cloud and claims to have found internal data for various government agencies including:
a proposal for the FBI to develop a "Special Identities Modernization (SIM) Project" to "reduce terrorist and criminal activity by protecting all records associated with trusted individuals and revealing the identities of those individuals who may pose serious risk to the United States and its allies". We also found fingerprinting contracts for the DOJ, biometrics development for the military, and strategy contracts for the "National Nuclear Security Administration Nuclear Weapons Complex".
They are going to pull the plug on the net before long if this keeps up. Funny thing, SQL injection attacks have been around for sometime and is a well known potential vulnerability.
How is it that security company would still have this vulnerability? That's a basic exploit and shows the caliber of these bozos, an FBI security contractor owned by a basic exploit.