We are anonymous inside the hacker world of lulzse

More documents

Recommendations

Info

Since childhood, Bailey had harbored deep, secret feelings that he was really female. Even as he and his wife pursued a polyamorous relationship and went to swinging parties, he had kept those particular feelings repressed. Soon after leaving the army, though, Bailey became friends online with a transgender woman and felt an instant attraction. She was beautiful and confident, and Bailey started to believe it might be possible for him to look and feel the same. On May 26, 2009, he bought a case of hormone replacement therapy (HRT) pills online and started secretly taking them. He was excited but decided to see how he felt before telling his family about his decision. The pills ended up taking effect more quickly than he had expected; within a month he had developed B-cup breasts. He asked his mother and brother to come over and sat them down in the living room with his wife and two children, ages three and two at the time. It took him an hour of stalling to finally get to the point, but eventually he told them why they were there. He wanted to undergo a sex change and become a woman. They were stunned into silence. Eventually one of them asked if Bailey was sure he wanted to do it. He told them flat-out that he had already begun taking estrogen supplements. He knew that they would try to talk him out of it, so he had resolved to be firm. He gave them two choices: accept that he was becoming a woman or stay out of his life. Not long after that meeting, he and his wife filed for divorce, agreeing to share custody of their two children. Bailey’s mother and brother were accepting. Bailey went by the name Laurelai, the name his mother had picked in case he’d been born a girl. Laurelai had an educational mountain ahead of her. Learning how to be female was like going through puberty all over again. It was tough, but she felt that she was becoming the person she was meant to be. Soon her soldier’s buzz cut had grown long and she was walking around the house in pink tank tops. In the mornings she would sit down in front of her computer and take a few hormone pills with a swig from a bottle of Coke. As she left her old sexuality behind, she also wanted to change what she was online, from a simple website administrator to a full-fledged hacker. She started exploring the darker arts of the Web while maintaining her website, ScientologyExposed. It was now late 2009, and as the site got fewer visitors, Laurelai realized the goal of “destroying Scientology” was probably too grand. One day, someone started attacking her site. Laurelai checked the site’s configurations and saw it was getting flooded with so much junk traffic that it was now offline—a classic DDoS attack. She hopped onto an IRC network, and, as she was discussing the problem with a few of her site’s moderators, a new person came into the chat room to claim responsibility. The moderators suspected that this was just a troll, but when Laurelai exchanged private messages, the person explained that someone was using a botnet to hit her site. To Laurelai’s surprise, the stranger invited her into the botnet’s command channel to speak to the person causing the damage. Laurelai agreed and went into a new channel on another IRC network. There, controlling the botnet that had shut down her website, was Kayla. Laurelai had never heard of her before. “Who the fuck is this?” Kayla asked. A little taken aback, Laurelai explained that she was the owner of the website ScientologyExposed, the one that Kayla happened to be attacking. Kayla seemed surprised. She explained that she hadn’t meant to hit ScientologyExposed but rather Enturbulation.org. Laurelai knew it as Gregg Housh’s site. Thanks to some technical complications from a previous time when they had briefly worked together, she and Housh shared the same server. By hitting Enturbulation, Kayla had caused collateral damage to Laurelai’s site. Laurelai explained that her site was an alternative to Housh’s, concentrating more on trolling. Kayla’s mood suddenly lightened. “Oh, sorry,” she said. “Why are you on the same server as those moralfags anyway?” Laurelai realized that Kayla hated moralfags; it was why she was hitting Enturbulation in the first place. Kayla explained that she disliked the way the Chanology organizers had put a stop to black hat hacking. She believed that hitting Scientology with hard and fast attacks was more effective than a long, drawn-out protest. Laurelai felt an instant meeting of minds and was especially intrigued when Kayla mentioned black hat hackers. The adversaries of white hats, black hats were people who used their computer programing skills to break into computer networks for their own, sometimes malicious, means. The two talked for about an hour, after which Kayla said she would put the brakes on for a few hours to give Laurelai some time to move her site to a different server. Kayla then resumed her DDoS attack. Later Laurelai asked some black hat hackers she had recently met if they’d heard the name Kayla. She learned that her new acquaintance had the reputation of someone not to be crossed. “A lot of people were afraid of her,” Laurelai later remembered. Some were surprised that Kayla would even talk to Laurelai—who at the time was just somebody with a website. Regardless, the two kept in touch. A few days later, Kayla found Laurelai on IRC and invited her to the public chat network where she normally hung out. The two got to know each other a little better. At one point, Laurelai asked Kayla her age. Kayla replied that she was fourteen. When she asked her sex in real life, Kayla said she was female. Kayla asked the same, and when Laurelai replied that she was transgender, Kayla launched into topics like hormone supplements. To Laurelai’s surprise, Kayla seemed to know the details about hormone dosages and their side effects better than she did. Kayla even used the nickname for the little blue pills sold as Estrofem: titty skittles. Laurelai wondered if she was speaking to a transgender hacker. There was not much research on hackers who were trans but plenty of anecdotal evidence suggesting the number of transgender people regularly visiting 4chan or taking part in hacker communities was disproportionally high. One reason may have been that as people spent more time in these communities and experimented with “gender bending” online, they could more easily consider changing who they were in the real world. Lines between the offline and online selves could become blurred, and some people in these communities were known to talk about gender as just another thing to “hack on,” according to Christina Dunbar-Hester, a professor at Rutgers University who studied gender differences in hardware and software hacking. If people were already used to customizing a machine or code, they might have come to see their own bodies as the next appealing challenge, especially if they already felt uncomfortable with the gender they were born with. Still, according to Dunbar-Hester, plenty of people immersed themselves in another gender online, but didn’t replicate that in real life. In other words, Kayla could have been a man who enjoyed being female online, and nothing more. “Are you trans?” Laurelai ventured. “No,” said Kayla. “I just know someone trans. :)” Kayla had answered this quickly, and it strengthened Laurelai’s suspicions. “Well it doesn’t matter if you’re trans or not,” Laurelai replied, adding that if Kayla wanted to be called “she” online, then Laurelai would refer to her as “she” out of respect for her wishes. The two talked more about hacking, trolling, and social engineering, Laurelai as student and Kayla as teacher. In the coming years, Kayla would introduce Laurelai to her secretive world, while Anonymous would fall back into the shadows. All that was needed was for a new cause to come along, and in late 2010 one finally did, pushing Anonymous into the international spotlight.
spotlight. Chapter 7 FIRE FIRE FIRE FIRE It was September 2010, and for a couple of years now the Anonymous phenomenon had vanished from news headlines. Raids were small, petty assaults on other sites, mostly carried out by chans or /b/ itself. Very little was happening on IRC, either. The thousands who had piled into #xenu had moved on, put off by the internal discord, their interest lost in the novelty. On September 8, an article about an Indian software company called Aiplex started getting passed around online. Girish Kumar, Aiplex’s CEO, had boasted to the press that his company was acting as a hit man for Bollywood, India’s booming film industry. Aiplex didn’t just sell software. It was working on behalf of movie studios to attack websites that allowed people to download pirated copies of their films. Recently, for instance, it had launched DDoS attacks against several torrent sites, including the most famous of them all, The Pirate Bay. Founded in 2003, The Pirate Bay was the most popular and storied BitTorrent site on the net, a treasure trove from which anyone could illegally download movies, songs, porn, and computer programs. Aiplex had used a botnet to flood The Pirate Bay with traffic, overload its servers, and temporarily shut it down. Kumar had explained that when torrent sites didn’t respond to a notice from Aiplex, “we flood the website with requests, which results in database error, causing denial of service.” Tech bloggers and journalists already suspected that antipiracy groups were DDoSing torrent sites like The Pirate Bay, but Kumar’s admission was the first proof. It was still a shocking admission; DDoS-ing was illegal in the United States, having sent Brian Mettenbrink to jail for a year. Now the Indian company was openly boasting of using the same method. Soon enough, users on /b/ started discussing the news. It turned out that lots of people wanted to hit back at Aiplex. A few started pasting an everyone-get-in-here link to a channel on IRC for proper planning. This time, there weren’t thousands piling in like they had done with #xenu. Fighting copyright wasn’t as sexy as hitting a shady religious group that suppressed a video of Tom Cruise. But piracy was popular among /b/ users, and, soon enough, roughly 150 people had entered the new IRC channel, game for Anonymous to give Aiplex a taste of its own medicine. Coordinating an attack would not be easy. By now, IRC network hosts had become more aware of Anonymous and would quickly shut down a chat room if they thought people were using it to discuss a DDoS attack. To deal with this, the Anons jumped from IRC network to IRC network, pasting links to the new rooms on 4chan and Twitter each time they moved so others could follow. No one was appointed to find the new locations; whenever the group had to move, someone would find a new network and make a channel. The channels were always innocuously named so as not to attract attention, but the regular channel name for attacking Aiplex was called #savethepb, abbreviating Pirate Bay. After some planning, the group launched its first DDoS attack on Aiplex on September 17 at 9:00 p.m. eastern standard time. Just as they had hoped, the software company’s website went dark—and remained so for twenty-four hours. Feeling confident, the Anons quickly broadened their attack, posting digital flyers on /b/ so others could use LOIC against another organization trying to end piracy: the Recording Industry Association of America, or RIAA. The tech blog TorrentFreak.com posted a news article headlined “4chan to DDoS RIAA Next— Is This the Protest of the Future?” The group then hit another copyright organization, the Motion Picture Association of America (MPAA). Two days later they began circulating a message to the media, saying that Anonymous was avenging The Pirate Bay by hitting copyright associations and “their hired gun,” Aiplex. They called the attacks “Operation: Payback Is A Bitch” and claimed to have taken down Aiplex thanks to a “SINGLE ANON” with a botnet. “Anonymous is tired of corporate interests controlling the internet and silencing the people’s rights to spread information,” the letter said, adding, “Rejoice /b/brothers.” In unashamedly romanticizing pirated movies and music, they were also positioning Aiplex’s attacks on The Pirate Bay as “censorship,” giving their fight-back broader appeal. For the first time in two years, it looked like Anonymous might be onto another major project after Chanology, and the spark had been that all-important provocation in hacker culture: you DDoS me, I DDoS you. It was around this time that Tflow, the quiet hacker who would later bring together Sabu, Topiary, and Kayla, read the TorrentFreak article and jumped into his first Anonymous operation. It would later emerge that the person behind Tflow lived in London and was just sixteen years old. He never talked about his age or background when he was online. “I thought it was a good and unique cause,” he later remembered. “Of course, DDoS attacks got boring after that.” What Tflow meant was that he was more interested in finding ways that Anons could disrupt antipiracy organizations other than knocking their sites offline. He hopped into #savethepb to observe what other supporters were saying and was pleasantly surprised. A few people appeared to have as much technical knowledge as he did. After Tflow approached a few privately and they met in a separate IRC channel, the smaller team started looking for vulnerabilities in antipiracy groups and found one in the website CopyrightAlliance.org. About a week after the DDoS attack on Aiplex, the hackers in Tflow’s group carried out the first SQL injection attack in their campaign, possibly one of the first to be committed under the banner of Anonymous. They hacked into the CopyrightAlliance.org Web server and replaced the site with the same message used on September 19, “Payback Is A Bitch.” Defacing a site was harder to do than carrying out a DDoS attack—you had to get root access to a server—but it had a bigger impact. They then turned CopyrightAlliance.org into a repository for pirated movies, games, and songs, including, naturally, “Never Gonna Give You Up” by Rick Astley, and Classic Sudoku. They also stole 500 megabytes of e-mails from London copyright law firm ACS:Law and published them on the same defaced site. Tflow and the others were all the while herding supporters from place to place. Between September and November 2010, he helped move roughly three hundred regular chat participants between ten different IRC networks so that they could keep collaborating.
Page 2 and 3: Begin Reading Table of Contents Cop
Page 4 and 5: his HBGary Federal account, possibl
Page 6 and 7: culture and key figures within it.
Page 8 and 9: dreadful fascination at his phone a
Page 10 and 11: Aaron Barr would never have come fa
Page 12 and 13: “nigger,” “faggot,” or just
Page 14 and 15: owns my ass.” With his other hand
Page 16 and 17: In 2008 he helped instigate Operati
Page 18 and 19: death threats and threatened to bom
Page 20 and 21: another poster described “Phase 2
Page 22 and 23: though, they were usurped by what w
Page 24 and 25: We are Legion We do not forgive We
Page 26 and 27: day in federal prison. In the meant
Page 30 and 31: oughly three hundred regular chat p
Page 32 and 33: 1. Get the latest LOIC from github.
Page 34 and 35: Asperger syndrome, rarely left his
Page 36 and 37: “It’s a troll,” another organ
Page 38 and 39: had joined mentoring program iMento
Page 40 and 41: choose a unique nickname on AnonOps
Page 42 and 43: time. Kayla actually had several IR
Page 44 and 45: was headquartered and where Barr wo
Page 46 and 47: “So are we going to focus on Anon
Page 48 and 49: Starting in early January, many sup
Page 50 and 51: “Well in my lifetime I’ve perfo
Page 52 and 53: uh, actual intelligence.” There w
Page 54 and 55: definitely unimpressed—the claims
Page 56 and 57: nude photos. Four years later, an e
Page 58 and 59: “Is this a new trend :D to see wh
Page 60 and 61: network collapsed, they would move
Page 62 and 63: large notice board with paperwork a
Page 64 and 65: April 2011, while he and Sabu were
Page 66 and 67: since they had a wider array of ski
Page 68 and 69: will get in trouble and might be gr
Page 70 and 71: passwords for almost every journali
Page 72 and 73: or online for most of the day and s
Page 74 and 75: a mixture of Anons, script kiddies,
Page 76 and 77: Sabu hated white hat security firms
Page 78 and 79:
“Just looked at this guy’s sour
Page 80 and 81:
otnets. Topiary shot back with a se
Page 82 and 83:
wasn’t Sabu. “You got the wrong
Page 84 and 85:
them that he was back. Topiary at f
Page 86 and 87:
websites, bigger ones. He had a rap
Page 88 and 89:
“Y’all were the inspiration I n
Page 90 and 91:
LulzSec. Tflow created a torrent fi
Page 92 and 93:
The Fate of Lulz LulzSec’s signif
Page 94 and 95:
opposite of Kayla. And yet there wa
Page 96 and 97:
one of the LulzSec accounts in resp
Page 98 and 99:
on the network. He decided to try t
Page 100 and 101:
morning of their meeting, William
Page 102 and 103:
techniques like the Cain and Abel p
Page 104 and 105:
hackers in private IRC rooms. It wa
Page 106 and 107:
the open at the same time: the susp
Page 108 and 109:
Kayla’s story had become more imp
Page 110 and 111:
Stephane Fitch, who also introduced
Page 112 and 113:
writes a spoof news article about t
Page 114 and 115:
following twenty names in the ranki
Page 116 and 117:
to websites that showed the steps o
Page 118 and 119:
Minions.” Another helpful source
Page 120 and 121:
“extreme version of Calvinism”
Page 122 and 123:
2011, however, we held our first re
Page 124 and 125:
that were first leaked online by Pa
Page 126 and 127:
on the CIA. Details about Julian As
Page 128 and 129:
Descriptions of Ryan Mark Ackroyd w
Page 130 and 131:
Parmy Olson is the London bureau ch
show all

We are anonymous inside the hacker world of lulzse

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?