Antisec Movement

Last updated
The Anti-sec movement's manifesto which had replaced a number of pictures hosted by ImageShack. Anti-sec manifesto.png
The Anti-sec movement's manifesto which had replaced a number of pictures hosted by ImageShack.

The Anti Security Movement (also written as antisec and anti-sec) is a movement opposed to the computer security industry. Antisec is against full disclosure of information relating to software vulnerabilities, exploits, exploitation techniques, hacking tools, attacking public outlets and distribution points of that information. The general thought behind this is that the computer security industry uses full disclosure to profit and develop scare-tactics to convince people into buying their firewalls, anti-virus software and auditing services.

Contents

Movement followers have identified as targets of their cause:

In 2009, attacks against security communities such as Astalavista [1] and milw0rm, [2] and the popular image-host ImageShack, [3] [4] have given the movement worldwide media attention.

History

The start of most public attacks in the name of the anti-security movement started around 1999. The "anti-security movement" as it is understood today was coined by the following document which was initially an index on the anti.security.is website. [5] [6] [7] [8]

The purpose of this movement is to encourage a new policy of anti-disclosure among the computer and network security communities. The goal is not to ultimately discourage the publication of all security-related news and developments, but rather, to stop the disclosure of all unknown or non-public exploits and vulnerabilities. In essence, this would put a stop to the publication of all private materials that could allow script kiddies from compromising systems via unknown methods.

The open-source movement has been an invaluable tool in the computer world, and we are all indebted to it. Open-source is a wonderful concept which should and will exist forever, as educational, scientific, and end-user software should be free and available to everybody.

Exploits, on the other hand, do not fall into this broad category. Just like munitions, which span from cryptographic algorithms to hand guns to missiles, and may not be spread without the control of export restrictions, exploits should not be released to a mass public of millions of Internet users. A digital holocaust occurs each time an exploit appears on Bugtraq, and kids across the world download it and target unprepared system administrators. Quite frankly, the integrity of systems world wide will be ensured to a much greater extent when exploits are kept private, and not published.

A common misconception is that if groups or individuals keep exploits and security secrets to themselves, they will become the dominators of the "illegal scene", as countless insecure systems will be solely at their mercy. This is far from the truth. Forums for information trade, such as Bugtraq, Packetstorm, www.hack.co.za, and vuln-dev have done much more to harm the underground and net than they have done to help them.

What casual browsers of these sites and mailing lists fail to realize is that some of the more prominent groups do not publish their findings immediately, but only as a last resort in the case that their code is leaked or has become obsolete. This is why production dates in header files often precede release dates by a matter of months or even years.

Another false conclusion by the same manner is that if these groups haven't released anything in a matter of months, it must be because they haven't found anything new. The regular reader must be made aware of these things.

We are not trying to discourage exploit development or source auditing. We are merely trying to stop the results of these efforts from seeing the light. Please join us if you would like to see a stop to the commercialization, media, and general abuse of infosec.

Thank you.

~el8

~el8 was one of the first anti-security hacktivist groups. The group waged war on the security industry with their popular assault known as "pr0j3kt m4yh3m". pr0j3kt m4yh3m was announced in the second issue of ~el8. The idea of the project was to eliminate all public outlets of security news and exploits. Some of ~el8's more notable targets included Theo de Raadt, K2, Mixter, Ryan Russel (Blue Boar), Gotfault (also known as INSANITY), Chris McNab (so1o), jobe, rloxley, pm, aempirei, broncbuster, lcamtuf, and OpenBSD's CVS repository.

The group published four electronic zines which are available on textfiles.com. [9]

pHC

pHC [10] is an acronym for "Phrack High Council". This group also waged war against the security industry and continued to update their website with news, missions, and hack logs. [11]

Less recent history

Most of the original groups such as ~el8 have grown tired of the anti-security movement and left the scene. New groups started to emerge.

dikline

dikline kept a website [12] which had an index of websites and people attacked by the group or submitted to them. Some of the more notable dikline targets were rave, rosiello, unl0ck, nocturnal, r0t0r, silent, gotfault, and skew/tal0n. [13]

More recent history

giest

In August 2008, mails were sent through the full-disclosure mailing list from a person/group known as "giest".

Other targets include mwcollect.org in which the group released a tar.gz containing listens of their honeypot networks. [14] [15]

ZF0

ZF0 (Zer0 For Owned) performed numerous attacks in the name of pr0j3kt m4yh3m in 2009. They took targets such as Critical Security, Comodo and various others. They published 5 ezines in total. [16] July 2009, Kevin Mitnick's website was targeted by ZF0, displaying gay pornography with the text "all a board the mantrain." [17]

AntiSec Group

A group known as the "AntiSec Group" [18] enters the scene by attacking groups/communities such as an Astalavista, [1] a security auditing company named SSANZ and the popular image hosting website ImageShack. [3]

Graffiti reading "Antisec" [18] began appearing in San Diego, California in June 2011 and was incorrectly [19] associated with the original Antisec [18] movement. According to CBS8, a local TV affiliate "People living in Mission Beach say the unusual graffiti first appeared last week on the boardwalk." They also reported "...it was quickly painted over, but the stenciled words were back Monday morning." It was later realized[ by whom? ] to be related to the new Anti-Sec movement started by LulzSec and Anonymous. [20]

On April 30, 2015 the AntiSec Movement reappeared and started Doxing police officers by hacking their databases. On April 30, 2015 they hacked into Madison Police Department and released officers names, address, phone numbers, and other personal data in relation to an Anonymous operation. [21] [22]

Related Research Articles

<span class="mw-page-title-main">Buffer overflow</span> Anomaly in computer security and programming

In information security and programming, a buffer overflow, or buffer overrun, is an anomaly whereby a program, while writing data to a buffer, overruns the buffer's boundary and overwrites adjacent memory locations.

<i>Phrack</i>

Phrack is an e-zine written by and for hackers, first published November 17, 1985. Described by Fyodor as "the best, and by far the longest running hacker zine," the magazine is open for contributions by anyone who desires to publish remarkable works or express original ideas on the topics of interest. It has a wide circulation which includes both hackers and computer security professionals.

<span class="mw-page-title-main">Hacktivism</span> Computer-based activities as a means of protest

In Internet activism, hacktivism, or hactivism, is the use of computer-based techniques such as hacking as a form of civil disobedience to promote a political agenda or social change. With roots in hacker culture and hacker ethics, its ends are often related to free speech, human rights, or freedom of information movements.

<span class="mw-page-title-main">Rootkit</span> Software designed to enable access to unauthorized locations in a computer

A rootkit is a collection of computer software, typically malicious, designed to enable access to a computer or an area of its software that is not otherwise allowed and often masks its existence or the existence of other software. The term rootkit is a compound of "root" and the word "kit". The term "rootkit" has negative connotations through its association with malware.

<span class="mw-page-title-main">SQL injection</span> Computer hacking technique

In computing, SQL injection is a code injection technique used to attack data-driven applications, in which malicious SQL statements are inserted into an entry field for execution. SQL injection must exploit a security vulnerability in an application's software, for example, when user input is either incorrectly filtered for string literal escape characters embedded in SQL statements or user input is not strongly typed and unexpectedly executed. SQL injection is mostly known as an attack vector for websites but can be used to attack any type of SQL database.

A grey hat is a computer hacker or computer security expert who may sometimes violate laws or typical ethical standards, but usually does not have the malicious intent typical of a black hat hacker.

<span class="mw-page-title-main">Peiter Zatko</span> American computer security expert

Peiter C. Zatko, better known as Mudge, is an American network security expert, open source programmer, writer, and hacker. He was the most prominent member of the high-profile hacker think tank the L0pht as well as the computer and culture hacking cooperative the Cult of the Dead Cow.

<span class="mw-page-title-main">HackThisSite</span> Organization

HackThisSite.org, commonly referred to as HTS, is an online hacking and security website founded by Jeremy Hammond. The site is maintained by members of the community after his departure. It aims to provide users with a way to learn and practice basic and advanced "hacking" skills through a series of challenges in a safe and legal environment. The organization has a user base of over a million, though the number of active members is believed to be much lower. The most users online at the same time was 19,950 on February 5, 2018 at 2:46 a.m.CT.

<span class="mw-page-title-main">Anonymous (hacker group)</span> Decentralized hacktivist group

Anonymous is a decentralized international activist and hacktivist collective and movement primarily known for its various cyberattacks against several governments, government institutions and government agencies, corporations and the Church of Scientology.

A zero-day is a computer-software vulnerability previously unknown to those who should be interested in its mitigation, like the vendor of the target software. Until the vulnerability is mitigated, hackers can exploit it to adversely affect programs, data, additional computers or a network. An exploit taking advantage of a zero-day is called a zero-day exploit, or zero-day attack.

Bugtraq was an electronic mailing list dedicated to issues about computer security. On-topic issues are new discussions about vulnerabilities, vendor security-related announcements, methods of exploitation, and how to fix them. It was a high-volume mailing list, with as many as 776 posts in a month, and almost all new security vulnerabilities were discussed on the list in its early days. The forum provided a vehicle for anyone to disclose and discuss computer vulnerabilities, including security researchers and product vendors. While the service has not been officially terminated, and its archives are still publicly accessible, no new posts have been made since January 2021.

milw0rm Hacker group

Milw0rm is a group of hacktivists best known for penetrating the computers of the Bhabha Atomic Research Centre (BARC) in Mumbai, the primary nuclear research facility of India, on June 3, 1998. The group conducted hacks for political reasons, including the largest mass hack up to that time, inserting an anti-nuclear weapons agenda and peace message on its hacked websites. The group's logo featured the slogan "Putting the power back in the hands of the people."

Pwn2Own is a computer hacking contest held annually at the CanSecWest security conference. First held in April 2007 in Vancouver, the contest is now held twice a year, most recently in April 2021. Contestants are challenged to exploit widely used software and mobile devices with previously unknown vulnerabilities. Winners of the contest receive the device that they exploited and a cash prize. The Pwn2Own contest serves to demonstrate the vulnerability of devices and software in widespread use while also providing a checkpoint on the progress made in security since the previous year.

Antisec may refer to:

<span class="mw-page-title-main">Goatse Security</span> Hacker group

Goatse Security (GoatSec) was a loose-knit, nine-person grey hat hacker group that specialized in uncovering security flaws. It was a division of the anti-blogging Internet trolling organization known as the Gay Nigger Association of America (GNAA). The group derives its name from the Goatse.cx shock site, and it chose "Gaping Holes Exposed" as its slogan. The website has been abandoned without an update since May 2014.

<span class="mw-page-title-main">LulzSec</span> Hacker group

LulzSec was a black hat computer hacking group that claimed responsibility for several high profile attacks, including the compromise of user accounts from PlayStation Network in 2011. The group also claimed responsibility for taking the CIA website offline. Some security professionals have commented that LulzSec has drawn attention to insecure systems and the dangers of password reuse. It has gained attention due to its high profile targets and the sarcastic messages it has posted in the aftermath of its attacks. One of the founders of LulzSec was computer security specialist Hector Monsegur, who used the online moniker Sabu. He later helped law enforcement track down other members of the organization as part of a plea deal. At least four associates of LulzSec were arrested in March 2012 as part of this investigation. Prior, British authorities had announced the arrests of two teenagers they alleged were LulzSec members, going by the pseudonyms T-flow and Topiary.

<span class="mw-page-title-main">Operation AntiSec</span> Series of cyberattacks conducted by Anonymous and LulzSec

Operation Anti-Security, also referred to as Operation AntiSec or #AntiSec, is a series of hacking attacks performed by members of the hacking group LulzSec and Anonymous, and others inspired by the announcement of the operation. LulzSec performed the earliest attacks of the operation, with the first against the Serious Organised Crime Agency on 20 June 2011. Soon after, the group released information taken from the servers of the Arizona Department of Public Safety; Anonymous would later release information from the same agency two more times. An offshoot of the group calling themselves LulzSecBrazil launched attacks on numerous websites belonging to the Government of Brazil and the energy company Petrobras. LulzSec claimed to retire as a group, but on 18 July they reconvened to hack into the websites of British newspapers The Sun and The Times, posting a fake news story of the death of the publication's owner Rupert Murdoch.

<span class="mw-page-title-main">Phineas Fisher</span> Hacktivist

Phineas Fisher is an unidentified hacktivist and self-proclaimed anarchist revolutionary. Notable hacks include the surveillance company Gamma International, Hacking Team, the Sindicat De Mossos d'Esquadra and the ruling Turkish Justice and Development Party three of which were later made searchable by WikiLeaks.

MLT, real name Matthew Telfer, is a cybersecurity researcher, former grey hat computer hacker and former member of TeaMp0isoN. MLT was arrested in May 2012 in relation to his activities within TeaMp0isoN, a computer-hacking group which claimed responsibility for many high-profile attacks, including website vandalism of the United Nations, Facebook, NATO, BlackBerry, T-Mobile USA and several other large sites in addition to high-profile denial-of-service attacks and leaks of confidential data. After his arrest, he reformed his actions and shifted his focus to activities as a white hat cybersecurity specialist. He was the founder of now-defunct Project Insecurity LTD.

References

  1. 1 2 "Astalavista Hacked and Torn apart". Kotrotsos. Archived from the original on 8 June 2009. Retrieved July 7, 2009.
  2. "Full Disclosure: Ant-Sec - We are going to terminate Hackforums.net and Milw0rm.com - New Apache 0-day exploit uncovered". Seclists.org. Retrieved 2012-08-20.
  3. 1 2 "ImageShack hacked in oddball security protest". The Register.
  4. "ImageShack hacked by anti-full disclosure movement". ZDNet.
  5. "Anti Security :: Save a bug, save a life". 2001-03-01. Archived from the original on 2001-03-01. Retrieved 2012-08-20.
  6. "Archived copy". Archived from the original on 2009-07-20. Retrieved 2011-06-20.{{cite web}}: CS1 maint: archived copy as title (link)
  7. "Archived copy". Archived from the original on 2009-07-20. Retrieved 2011-06-20.{{cite web}}: CS1 maint: archived copy as title (link)
  8. "Archived copy". Archived from the original on 2009-07-20. Retrieved 2011-06-20.{{cite web}}: CS1 maint: archived copy as title (link)
  9. "T E X T F I L E S". Web.textfiles.com. Retrieved 2012-08-20.
  10. phrack.efnet.ru Archived April 2, 2012, at the Wayback Machine
  11. "Index of /Backup/Oldschool/PHC". Archived from the original on 2009-07-20. Retrieved 2011-06-20.
  12. "dikline.org". dikline.org. Archived from the original on 2012-11-07. Retrieved 2012-10-09.
  13. Archived October 20, 2008, at the Wayback Machine
  14. "Security researchers' accounts ransacked in embarrasing [sic] hacklash". theregister.co.uk.
  15. "Archived copy". Archived from the original on 2009-07-21. Retrieved 2009-07-15.{{cite web}}: CS1 maint: archived copy as title (link)
  16. "Index of /ezines/ZF0". Gonullyourself.org. 2012-01-13. Archived from the original on 2012-05-12. Retrieved 2012-08-20.
  17. "Mitnich website targeted". Theregister.co.uk. June 26, 2009.
  18. 1 2 3 "antisecmovement.com". antisecmovement.com. Archived from the original on 2012-06-21. Retrieved 2012-10-09.
  19. ""Anti-Sec" group spreads message through graffiti in Mission Beach". cbs8.com. Retrieved 2021-04-18.
  20. "Unusual stenciled graffiti on Mission Beach boardwalk". WorldNow and Midwest Television. Archived from the original on February 10, 2012. Retrieved June 21, 2011.
    1. OpRobinson
  22. Kopfstein, Janus. "AntiSec Attacks Wisconsin Cops After Shooting Death of Unarmed Teen". Motherboard. Retrieved 10 June 2015.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.