Anonymous Hackers Targeted By FBI, Homeland Security For Potential National Security Threat

By PAUL ELIAS 09/11/11 06:12 PM ET Associated Press

React

share this story

Get Technology Alerts

Submit this story

SAN FRANCISCO -- Anonymous is not so anonymous anymore.

The computer hackers, chat room denizens and young people who comprise the loosely affiliated Internet collective have increasingly turned to questionable tactics, drawing the attention of the FBI, the Department of Homeland Security and other federal investigators.

What was once a small group of pranksters has become a potential national security threat, federal officials say.

The FBI has carried out more than 75 raids and arrested 16 people this year in connection with illegal hacking jobs claimed by Anonymous.

Since June, the Department of Homeland Security has issued three "bulletins" warning cyber-security professionals of hacking successes and future threats by Anonymous and related groups, including a call to physically occupy Manhattan's Wall Street on Sept. 17 in protest of various U.S. government policies.

San Francisco police arrested more than 40 protesters last month during a rowdy demonstration organized by Anonymous that disrupted the evening commute. The group called for the demonstration after the Bay Area Rapid Transit system shut off it cell service in San Francisco stations to quell a planned protest over police shooting on a subway platform.

"Anonymous' activities increased throughout 2011 with a number of high-profile attacks targeting both public and private sector entities," one of the bulletins issued last month said.

Some members of the group have also called for shutting down Facebook in November over privacy issues, although other Anonymous followers are disavowing such an attack – underscoring just how loosely organized the group is and how problematic it is to police.

"Anonymous insist they have no centralized operational leadership, which has been a significant hurdle for government and law enforcement entities attempting to curb their actions," an Aug. 1 Homeland Security bulletin noted. "With that being said, we assess with high confidence that Anonymous and associated groups will continue to exploit vulnerable publicly available Web servers, websites, computer networks, and other digital information mediums for the foreseeable future."

Followers posting to Twitter and chatting in Internet Relay Channels insist there are no defined leaders of Anonymous and that it's more of a philosophy than a formal club, though a small group of members do the most organizing online.

"Anonymous is not a group, it does not have leaders, people can do ANYTHING under the flag of their country," wrote one of the more vocal members who asked not to be identified.

"Anything can be a threat to National Security, really," the member said in an email interview. "Any hacker group can be."

The member said that the group as a whole wasn't a national security threat, but conceded some individuals acting as Anonynous may be considered dangerous.

DHS' latest bulletin, issued Sept. 3, warned the group has been using social media networks to urge followers working in the financial industry to sabotage their employers' computer systems.

The DHS warning comes on the heels of several Anonymous-led protests of the Bay Area's transit agency that led to FBI raids of 35 homes and dozens of arrests, as well as to the indictment of 14 followers in July on felony computer hacking charges in connection with a coordinated "denial of service attack" against Paypal's website last year.

Security officials said the "DDoS" attacks occur when a website is overwhelmed by malicious messages carried out by thousands of followers, usually with easily downloadable software.

"Anonymous has shown through recently reported incidents that it has members who have relatively more advanced technical capabilities who can also marshal large numbers of willing, but less technical, participants for DDoS activities," the August DHS bulletin said.

Anonymous orchestrated the crashing of Paypal late last year after the online financial service suspended Wikileaks' account after the website published confidential diplomatic cables and other sensitive U.S. government intelligence. The group also targeted Visa, Mastercard and others for the same reason and has carried out several other hacks during the year. Last month, for example, the group claimed responsibility for hacking a website belonging to the Bay Area Rapid Transit agency and releasing personal information of 2,000 passengers.

"Anonymous is incredibly active," said Josh Shaul, chief technology officer of Application Security, Inc., a New York-based provider of database security software. It's rare to have a hacking group willing to work outside of the shadows. These guys are quite brazen."

Anonymous emerged in 2003 from an Internet chat channel where members organized random Web incidents for their own amusement. By 2008, the prankster nature of Anonymous morphed into "hacktivism," where members sabotaged websites and leaked confidential information for political purposes.

Investigators suspect a splinter Anonymous group known as LulzSec was responsible for a June 15 denial of service attack on the CIA's public website.

This summer, Anonymous claimed credit for hacking into a Booz Allen Hamilton website and leaking email addresses of 90,000 U.S. military personnel and hacking a Monsanto Co. website and releasing personal data of 2,500 employees.

Until July, law enforcement officials around the world had arrested just a handful of suspected hackers thought to be affiliated with Anonymous. But on July 19, the FBI fanned out across the United States and raided more than 35 homes, seizing dozens of computers and arrested 16 on charges that they participated in the Paypal attack.

In response, Anonymous said it hacked a website on Sept. 1 belonging to police chiefs in Texas. The group posted personal information such as emails about internal investigations before the site was shut down.

FBI investigators in court filings said that the raids and arrests were made from a list of 1,000 computer users that Paypal cyber-security workers identified as the most active attackers. The fourteen appearing in San Jose federal court have pleaded not guilty and were released on bail after promising not to access Twitter, Facebook and other social media sites.

Most of the defendants were younger than 30. Security experts and the Department of Homeland Security say most of Anonymous followers are so-called "script kiddies," young people who carry out the attacks and who are "less skilled hackers" than the vocal group members who call for the protests and attacks.

The DHS defines script kiddies as: "Unskilled individuals who use scripts or programs developed by others to attack computer systems and networks and deface websites."

FOLLOW HUFFPOST TECH

Facebook:

72k

Twitter:

Get Alerts

CONTRIBUTE

TO THIS STORY

Comments
863
Pending Comments
0
View FAQ

Comments are closed for this entry

View All

Favorites

Highlights

Recency |

Popularity

Page: 1 2 3 4 5 Next › Last » (17 total)

HUFFPOST SUPER USER

dbrett480

412 Fans

04:19 PM on 09/18/2011

These attacks and protests haven't hurt anyone but the employees of the big companies being targeted. Their names and private information have been released, while the main target of the attacks isn't even effected.

Permalink | Share it

lynnbee666

1 Fans

07:13 PM on 09/17/2011

Across the street was the FBI when I approached claiming that both vehicles made the wrong turn but they turned around abd followed me. I only made a statement to Anonymous how to evade detection. To rely on Mask My ID is not an accurate method. Perhaps easily influenced teenagers are self confident but they need more hacker training instead of being manipulated by perhaps the FBI themselves for easy prey and to make it look like they are doing something than other making bullshit seem reality during their coffee breaks. I am supposed to be a member of 65 subversive organizations under the Freedom of Information Act without naming those organizations and I did not belong to anyone but I did work with people and no where near 65.

BoFo

Like, you talkin' to me?

259 Fans

07:54 AM on 09/16/2011

The guys at the DHS are just making a big deal about this so they can get their buddies who own private, cyber-security firms lucrative, government contracts. Once that's accomplished, the revolving door starts spinning.

06:31 PM on 09/18/2011

So hacking into websites and leaking people's personal information isn't a big deal?

08:09 PM on 09/19/2011

They're just looking for excuses for more corporate wel fare and surveillance of private citizens.

Private companies should be responsible for their own cyber-security -- until fairly recently many large corporations and government agencies had few, if any, preventative security measures in place.

Good preventative measures are not all that difficult to implement. The technology already exists and it's part of the cost of doing business in today's world. As grandma used to say, "An ounce of prevention is worth a pound of cure." The agencies in question, however, would rather get the money for the pound of cure.

If you were a cop, how sympathetic would you be toward someone who's car was stolen and who, by the way, had left the doors unlocked and the key in the ignition?

As the article stated: "Security experts and the Department of Homeland Security say most of Anonymous followers are so-called 'script kiddies,' young people who carry out the attacks and who are 'less skilled hackers' ..."

In other words, prevention of these types of attacks isn't rocket science.

There are More Comments on this Thread. Click Here To See them All

This user has chosen to opt out of the Badges program

bi-poplar

&*?X@#!

268 Fans

07:30 PM on 09/13/2011

Just let those of us who work 10 hour days and just want to get home on a Monday at them. I can see it now, a bunch of Administrative Assistants who need to get home to make dinner or pick their kids up from daycare against a mob of unwashed slacker trustfund hipsters. Should be a good fight-lopsided, but good. Afterwards-no more protests, cuz Anonymous and his friends will be in the SF General trauma ward

mothergrace

If they knock you down, bite 'em on the ankle.

1778 Fans

12:36 PM on 09/14/2011

Are you one of those scripted BART "real commuters?"

Maybe not. Maybe you are just an ordinary, run of the mill blowhard who advocates for a melee in complete contrast to a protest that does not.

03:33 PM on 09/14/2011

Actually, I work downtown and recently had hip surgery, so I count on BART to get home (with crutches) and cannot easily walk to an open station. So, while I appreciate Freedom of Speech and the Right to Peaceable Assembly, I don't think the BART protests are doing anything but hurting average working people. Most of us find the murder of Oscar Grant reprehensible (maybe a little less sympathy for the knife-weilding man shot recently). Perhaps if Anonymous actually protested at BART HQ, rather than the ragtag trouble-making at the downtown SF stations, people would be more sympathetic towards them, rather than hostile, which is what they're getting. I also realize that BART police are shutting down stations as a way to fuel animosity towards the protesters (it's working) And perhaps you are correct about "advocating for a melee"-I was just blowing off steam at yet another Monday of trying to get home without using my limited resources for a cab. And maybe you are just a run of the mill blowhard who advocates for protests as an excuse to cause trouble

KarateKid

3727 Fans

09:20 AM on 09/13/2011

Those proxy servers sure are a hassle, huh, DHS? LMAO.

Rick Woolums

redneck liberal

4911 Fans

12:49 AM on 09/13/2011

75 raids 16 arrests. I'm no math genius but it doesn't appear, to me anyway, that the FBI or the DHS have any clue who or where these people are. that is .213 arrests per raid, seems as though they are throwing darts at a board.

Morgantheaxe

Eisenhower Republicans don't drink tea!!

1260 Fans

11:19 PM on 09/12/2011

Dont worry guys those snappy lil plastic masks will keep you safe from the feds.

doublestack999

11 Fans

09:10 PM on 09/12/2011

So now if you protest murderous cops and the suspension of your civil rights then you will now be targeted by the FBI? WTH, someone tell me when George Bush is leaving the White House....oh wait never mind. Obama is in the White House. Almost 3 years later and Gitmo is still open and taking prisoners. The Patriot Act have been extended 3 times under Obama. Obama has given the FBI unlimited warrant-less wire-tapping powers. Yeah, keep telling yourself everything is alright.

PenguinLinux

got root ?

157 Fans

02:17 PM on 09/14/2011

what do you expect from a 1 party system?

reddy52

76 Fans

12:20 AM on 09/21/2011

Yes, because cyberhacking is just a harmless protest.

daishilegendary

0 Fans

06:05 PM on 09/12/2011

So, first off... Yeah it is wrong that Anonymous released personal info of people. The organization though is trying to keep the evil Politicians and Corporations on their toes. The more we fight back the harder it will be for them all to take away OUR freedom. Anonymous should be supported, anyone who would risk themselves for our freedom should be supported. Huffington Post screens these comments so it may never be posted. I feel as if that is also something that Anonymous should fight against. Censorship of free exchange of thought.

Sophie Halcyon

9 Fans

04:53 PM on 09/12/2011

By posting the info of regular citizens (ie NOT law enforcement, corp-tied) on Bit Torrents for anyone to download, they are putting people's real lives in danger. If an innocent person gets killed because of their actions, how many of you will still wave your pom-poms & cheer them on? This group may have started out supporting the truth behind Big Corp/Govt, but as the number of members grow, there are those who take advantage of script skills to cause REAL physical harm. An "idea" has become overloaded with malicious intent. Stay safe & God bless.

Eris23

Justice is in indefinite detention.

469 Fans

05:28 PM on 09/12/2011

"If an innocent person gets killed because of their actions"

LOL!

09:22 AM on 09/13/2011

You must be inebriated to write this _drivel.

snooty

87 Fans

03:13 PM on 09/12/2011

No one should be able to stop us from protesting. We should start using counter measures, like taser, against the police.

I support ANONYMOUS- I WISH THEY WOULD GO AFTER INTERNATIONAL BANKING AND OIL REFINERY OPERATIONS.

daregoni

190 Fans

04:46 PM on 09/12/2011

protesting is one thing.....................

04:48 PM on 09/12/2011

protesting is one thing......hacking is another. SEE THE DIFFERENCE?

05:29 PM on 09/12/2011

Running LOIC isn't hacking any more than standing in front of a doorway is arson.

Niet

494 Fans

07:10 PM on 09/12/2011

Yeah, hacking can't be ignored the way protesting can.

Fletch55

229 Fans

02:00 PM on 09/12/2011

Please dont arrest them til after they kill facebook. It will help the world so much once it is permanantly down...Come on anonomous get facebook down.

flinthfp

1John 5:11-12 Eternal Life in flesh

442 Fans

01:43 PM on 09/12/2011

If these guys are the robin hoods hackers that hack the likes of KNOWN corrupt aussie/saudi hacking networks I'm all for them !!!!! Until there is a major investigation into this networks political collusions

12:46 PM on 09/12/2011

"Security officials said the "DDoS" attacks occur when a website is overwhelmed by malicious messages carried out by thousands of followers, usually with easily downloadable software."

This is getting old. In regards to LOIC, it's not a "malicious message" that is sent. It's a perfectly common one that has absolutely no negative effect on a machine alone. Rather, it's when a server gets multiple messages that it becomes inaccessible. Hence, the proper context of comparing what was done to PayPal as a "sit in." Such demonstrations made it difficult for others to get into a business or facility. However, no damage was done. The same applies with LOIC. The Draconian responses by the government, coupled with the absurd propaganda that they've arrested "hackers" for using LOIC, is not a course of action that will lead to any victory.

"The DHS defines script kiddies as: "Unskilled individuals who use scripts or programs developed by others to attack computer systems and networks and deface websites.""

The DHS shouldn't try to coopt old jargon for it's own propaganda purposes either. The "kids" who used LOIC are not script kiddies just as those who show up to a street demonstration aren't anarchists. It would be amusing watching the government chase after suspects like they keystone cops as they have been regarding Anonymous if they weren't throwing threats of 30 years in jail at people who don't even fit the profile they should be chasing.

bgri50

we fine away

41 Fans

11:37 AM on 09/12/2011

more banks and companies and the govermnet demading u use ETF.as paymenst and deposits for our accounts.realy not much we can do to protect ourselves form them benig hack, intill fool proof security peograms is written.i'm sure they will fine away to hack that to.