Feeds

LulzSec hacker Sabu: Murdoch emails 'sometime soon'

Secretive figure tells our man release is coming

The Essential Guide to IT Transformation

The promised dump of its emails from News International by hacktivist group LulzSec failed to materialise on Tuesday. However a prominent affiliate of the group told El Reg that the release had only been delayed, rather than postponed.

The UK end of the Murdoch media empire was hacked on Monday night, so that surfers visiting The Sun's website were redirected towards a spoof story on the fictitious suicide of Rupert Murdoch. The hack involved exploiting weaknesses on a retired site, running Solaris, set up by NI at the time NI was building a paywall for The Times.

This pwnage was then used in a stepping stone attack that ultimately allowed the hackers to gain root on a server that gave them the ability to add a redirection script to the "breaking news" element of The Sun's website.

Hacktivists scoffed at Murdoch's expense over these antics, making comments such as "WE HAVE JOY WE HAVE FUN WE HAVE ROOT ON MURDOCH'S SUN!"

The deep level of compromised access demonstrated by LulzSec in running the fake story meant claims by hacktivists that the group had also gained access to NI's email database were all too plausible.

Sabu, a prominent affiliate of LulzSec, said via Twitter that the group was sitting on emails of News International staffers that it planned to release on Tuesday. "Sun/News of the world OWNED. We're sitting on their emails. Press release tomorrow," Sabu said on Monday.

In a follow-up message, Sabu challenged the Met Police (already on the defensive over the handling of the original NotW phone hack investigation, as well as accepting payments and favours from NI execs) to investigate LulzSec's hack on NI's email servers.

"We hereby challenge the authorities in the UK to investigate the hack on the mail server(s) associated to The Sun/NotW. #hackgate #antisec."

Hackgate

News International took its webmail and remote access systems offline and reset passwords as a remedial action following thesun.co.uk's redirection hack. Systems were restored on Tuesday morning, The Guardian reports.

This is a sensible precaution but it won't help NI if LulzSec did in fact manage to extract email archive files, as it claims it has. So far the group has only published email hashes of a small number of employees as well as the supposed email password of Rebekah Brooks at the time she edited The Sun. Brooks (who was called Wade at the time) seems to have used 63000 as her email password, the same number as The Sun's tip-line.

The more technically skilled members of Anonymous and LulzSec have previously released emails spools from organisations targeted for special treatment beyond standard denial of service attacks and webpage defacements. Both HBGary Federal and ACS:Law know this to their cost. In both these cases, email databases were released at the same time the websites of the targeted organisations were defaced.

This hasn't been the case in the News International attack, with the focus of online discussion among hacktivists turning to this week's arrest of suspected Anonymous members in the US and Europe. However, Sabu told El Reg via Twitter that more news on the claimed hack of News International emails had merely been delayed.

"We will release a press release about the mails sometime relatively soon," he said, without giving any particular deadline.

So, it seems, sysadmins and the rapidly dwindling senior execs at News International are not entitled to relax just yet. ®

Build a business case: developing custom apps

More from The Register

next story
14 antivirus apps found to have security problems
Vendors just don't care, says researcher, after finding basic boo-boos in security software
'Things' on the Internet-of-things have 25 vulnerabilities apiece
Leaking sprinklers, overheated thermostats and picked locks all online
Only '3% of web servers in top corps' fully fixed after Heartbleed snafu
Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
How long is too long to wait for a security fix?
Synology finally patches OpenSSL bugs in Trevor's NAS
Secure microkernel that uses maths to be 'bug free' goes open source
Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Israel's Iron Dome missile tech stolen by Chinese hackers
Corporate raiders Comment Crew fingered for attacks
Roll out the welcome mat to hackers and crackers
Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
HIDDEN packet sniffer spy tech in MILLIONS of iPhones, iPads – expert
Don't panic though – Apple's backdoor is not wide open to all, guru tells us
Researcher sat on critical IE bugs for THREE YEARS
VUPEN waited for Pwn2Own cash while IE's sandbox leaked
prev story

Whitepapers

Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Consolidation: The Foundation for IT Business Transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.
Backing up Big Data
Solving backup challenges and “protect everything from everywhere,” as we move into the era of big data management and the adoption of BYOD.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.