From eugen@leitl.org Wed Oct 6 09:36:02 2010 From: Eugen Leitl To: cypherpunks-legacy@lists.cpunks.org Subject: details on the Cryptome hack Date: Wed, 06 Oct 2010 09:36:02 +0000 Message-ID: <20101006133304.GP3951@leitl.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============9216978386898321824==" --===============9216978386898321824== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: quoted-printable http://www.techeye.net/security/whistleblowing-site-hacked=20 Whistleblowing site hacked All files deleted 06 Oct 2010 08:46 | by Nick Farrell | posted in Security A whistleblowing site has been hacked and defaced and all its 54,000 files de= leted. Cryptome said that that blocking attacks is nearly impossible due to the purp= osefully weak security of the Internet. In a statement it said that "Nearly all security methods are bogus. A compete= nt hacker or spy, or the two working together, can penetrate easily. We monit= or and keep back-ups ready. And do not trust our ISP, email provider and offi= cials to tell the truth or protect us." And we thought we were paranoid. Cryptome has revealed the steps the hackers used. First, its EarthLink email = account was accessed and its access password changed. Using that email addres= s, the hacker asked for information about Cryptome's multiple accounts. The C= ryptome.org management account was accessed at Network Solutions (NSI) and al= l "54,000 files (some 7GB) were deleted and the account password changed." Cryptome discovered that something was up when it could not gain access to em= ail or its NSI account. After placing a call to NSI, Cryptome had all files restored except for the p= revious two days. After chatting with EarthLink online support, email access = was restored and NSI emails were received about the management account change= s. The question is, who could have done such a thing? One of the key suspects wo= uld have to be China. Cryptome CN publishes information, documents and opinio= ns banned by the People's Republic of China. But when you publish secrets, yo= u make a lot of enemies. Just as Wikileaks has. Read more: http://www.techeye.net/security/whistleblowing-site-hacked#ixzz11a= LuvoIt --=20 Eugen* Leitl leitl http://leitl.org ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE --===============9216978386898321824==--