Tor_and_The_Dark_Net_Remain_Anonymous_and_Evade_NSA_Spying_by_James

Recommendations

Info

LEARNING FROM OTHERS’MISTAKES. HOW THEY BUSTEDSABUThis next chapter I want to focus on more mistakes that other hacktivists and freedomfighters have made which ultimately led to their arrests. This is more proof that you onlyneed to screw up once.You have probably heard me talk about somebody named Sabu multiple times and maybeyou are new to the online communities and you have no idea who I am talking about. Sabuwas the leader of a self-proclaimed hacktivist group called LulzSec. They wereresponsible for taking advantage of security exploits in online servers and posting theinformation online on a website called PasteBin. They had done this many times.“The men have been charged with hacking Fox Broadcasting Company, SonyPictures Entertainment, and the Public Broadcasting Service (aka PBS).”During the time all this was happening, the members of this group maintained an onlineInternet Relay Chat (IRC) channel in which they regularly discussed and took credit fortheir attacks and exploits. The agreed upon ring leader for these attacks, and this groupwent by the online handle Sabu. Sabu had also been linked to selling stolen credit cards onFacebook through his online handle, not his real one, which carries a charge of aggravatedidentity theft.The group had leaked identities of law enforcement, Sony users, and all wreaked all typesof havoc online including DDos attacks on the CIA. The FBI wanted Sabu, they wantedthe ring leader, who would eventually be facing charges that could lead to 112 years inprison. But as I mentioned in previous chapters, it only takes one mistake to get caught.That is all they need.https://www.informationweek.com/attacks/lulzsec-leader-sabu-unmasked-aidsfbi-hacker-sweep/d/d-id/1103214?http://www.foxnews.com/tech/2012/03/06/exclusive-unmasking-worlds-mostwanted-hacker/“Sabu had always been cautious, hiding his Internet protocol address throughproxy servers. But then just once he slipped. He logged into an Internet relaychatroom from his own IP address without masking it. All it took was once. Thefeds had a fix on him.”However, this was not his first actual slip up, but it was his first slip up where the fedsactually discovered his mistake. His identity was actually discovered, or “doxed”previously by another online hacking group called Backtrace who posted his identity andgeneral location online weeks prior to this in an attempt to dox members of LulzSec.
http://arstechnica.com/tech-policy/2012/03/doxed-how-sabu-was-outed-byformer-anons-long-before-his-arrest/“Sabu occasionally mentioned ownership of a domain called prvt.org in his chats,including those in Backtrace’s “consequences” document. Every domainregistration is associated with corresponding information in the WHOIS database.This information is supposed to include the name and address of the domain’sowner.Often this information is incorrect (most domain registrars do nothing to validateit) or anonymized (many firms offer “proxy” domain registration, so the WHOISdatabase contains the details of the proxy registrar, rather than the person usingthe domain). Monsegur appeared to use one of these anonymizing services, GoDaddy subsidiary Domains By Proxy, for registering the prvt.org domain.The registration for the domain was due to expire on June 25, 2011, requiringMonsegur to renew it. But for some reason—error on Monsegur’s part perhaps, orscrew-up by the registrar—the renewal was processed not by Domains By Proxybut by its parent, Go Daddy. Unlike Domains By Proxy, Go Daddy uses realinformation when it updates the WHOIS database, so on 24th June (the day beforeit was due to expire), Monsegur’s name, address, and telephone number were allpublicly attached to his domain name.Monsegur quickly remedied the mistake, changing the WHOIS registration to usevarious other identities—first to that of Adrian Lamo (who reported BradleyManning to authorities) and then to “Rafael Lima” and subsequently to “ChristianBiermann”. This attempt to mislead those relying on the WHOIS informationsuccessfully misled some would-be doxers. But not all: by August there wereextensive dossiers on Sabu’s true identity.”Two mistakes that we know of, is all that it took to bring down at one time, the World’sMost Wanted Hacker. If you are familiar with the story of LulzSec, there was a time theywere receiving mainstream news coverage and Sabu had gained a reputation of being thismystical untouchable hacker. Unfortunately for him, he made two small yet very costlymistakes which ended up putting him away. But we are not done yet on this story aboutSabu.Sabu had a weakness, that the feds used as leverage against him when he got busted.“An unemployed computer programmer, welfare recipient and legal guardian oftwo young children.“It was because of his kids,” one of the two agents recalled. “He’d do anything forhis kids. He didn’t want to go away to prison and leave them. That’s how we gothim.”Monsegur was quietly arrested on aggravated identity theft charges and releasedon bail. On Aug. 15 he pleaded guilty to a dozen counts of hacking-related chargesand agreed to cooperate with the FBI.”
Page 2 and 3: Tor and The Dark NetRemain Anonymou
Page 4 and 5: A FEW RECOMMENDATIONSCOLD BOOT ATTA
Page 7 and 8: INTRODUCTION TO TOR, HTTPS,AND SSLF
Page 10 and 11: PGP, TAILS, VIRTUAL BOXSo keep in m
Page 13 and 14: PGP Continued..Ok, so by now I am a
Page 15: and save it on your SD card or USB
Page 18: The reasoning behind this is that s
Page 21: Please get a clearer idea of how th
Page 25: EXIF DATAI forgot to mention above
Page 28: Third, drop the attitude. Do not ar
Page 31 and 32: subscriber. No matter how tough the
Page 34 and 35: THE ADVANTAGES ANDDISADVANTAGES OF
Page 37 and 38: CONNECTING TOR -> VPN FORWINDOWS US
Page 40: TRACKING COOKIESNext time I want to
Page 43 and 44: And in this particular case, the fe
Page 48: So when you are doing your freedom
Page 51 and 52: user sup_g to his real identity.“
Page 54 and 55: WHERE YOU MIGHT CONSIDERRUNNING TO,
Page 57: SECURING YOUR ACCOUNTS FROMFBI MONI
Page 60: encryption keys and SSL keys that p
Page 63: TOR. And since Tails establishes it
Page 66 and 67: where it says verify the integrity
Page 68: Manager. We are going to import the
Page 71: same good practices you are used to
Page 74 and 75: transportation, wear a hat, and all
Page 76: creating a wallet and logging in to
Page 79 and 80: you are using it. There is no reaso
Page 82 and 83: MONITORING YOU WITH ANANTENNAFirst
Page 85 and 86: COOKIES & JAVASCRIPT REVISITED,PLUS
Page 87: whole, it can make it easier to ide
Page 91 and 92: COLD BOOT ATTACKS,UNENCRYPTED RAM E
Page 93 and 94: only disks, not RAM (memory).Keep i
Page 95:
with DDR1, DDR2 and DDR3 and their
Page 98:
defeated CryptoLocker, and this is
Page 102 and 103:
“5.20.130.121:9001 63dd98cd106a95
Page 104 and 105:
enforcement or the NSA would do. So
Page 106 and 107:
relay broker the connection between
Page 108:
Currently there are other pluggable
Page 112 and 113:
BITCOIN CLIENTS IN TAILS -BLOCKCHAI
Page 115:
ConclusionI hope this book was able
show all

Tor_and_The_Dark_Net_Remain_Anonymous_and_Evade_NSA_Spying_by_James

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?