| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Date: Tue, 18 Nov 2008 17:06:31 -0500 From: adrian.lamo@...hmail.com To: fdiggle@...il.com Cc: full-disclosure@...ts.grok.org.uk Subject: Re: New hackers defacing the internets -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dear sir, Your logic is flawed. Observe: http://www.smashbros.com/en_us/characters/images/mario/mario.jpg = mustache http://www.sitcomsonline.com/photos/hewett-bw1.jpg = mustache http://www.losanjealous.com/wp-content/uploads/2007/11/borat06a.jpg = mustache http://www.electricscotland.com/thomson/images/20.19%20AdolfHitler.j pg = mustache http://www.kevhines.com/media/RollieFingers.jpg = mustache http://www.oxide.org/unix/pics/sysprog-valdis.jpg = mustache ~ are win! On Tue, 18 Nov 2008 16:56:29 -0500 Fredrick Diggle <fdiggle@...il.com> wrote: >Fredrick would advise you not to trust a mustache at a time like >this. > >Let's rehash > >"This is believed to be linked to terrorism and possibly >communism." >- Fredrick Diggle (Nov 18th 2008) > >http://www.lazarusrising.com/wp-content/uploads/2007/01/osama.jpg >= mustache > >http://www.marxists.org/reference/archive/stalin/photo/s1936a.gif >= Mustache... > >http://www.oxide.org/unix/pics/sysprog-valdis.jpg = MUSTACHE!!!!! >DO >NOT TRUST!!!! > > > >On Tue, Nov 18, 2008 at 3:37 PM, <adrian.lamo@...hmail.com> >wrote: >> -----BEGIN PGP SIGNED MESSAGE----- >> Hash: SHA1 >> >> Valdis' mustache and I are skeptical. >> >> - -al >> >> On Tue, 18 Nov 2008 16:32:06 -0500 Fredrick Diggle >> <fdiggle@...il.com> wrote: >>>As a supplement to your revealing md5 hash Fredrick Diggle >>>security >>>has also identified the following encrypted string as paramount >to >>>this investigation. >>> >>>Ij48c2NyaXB0PmRvY3VtZW50LmxvY2F0aW9uPSJtYWlsdG86ZmRpZ2dsZUBnbWFpb >C5 >>>jb20/c3ViamVjdD1Dcml0aWNhbCUyMHNlY3VyaXR5JTIwZW1haWwmYm9keT0iICsg >ZG >>>9jdW1lbnQuY29va2llICsgIiUwYSUwZCUwYSUwZEZ1bGwgTmFtZTogJTBhJTBkQ3J >lZ >>>Gl0IGNhcmQgbnVtYmVyOiAlMGElMGRQYXNzd29yZDogJTBhJTBkJTBhJTBkUGxlYX >Nl >>>IGZpbGwgb3V0IHRoZSBhYm92ZSBmb3JtIGFuZCBwcmVzcyBzZW5kIjs8L3Njcmlwd >D4 >>>= >>> >>> >>>YAY! >>> >>> >>>On Tue, Nov 18, 2008 at 2:10 PM, <adrian.lamo@...hmail.com> >>>wrote: >>>> -----BEGIN PGP SIGNED MESSAGE----- >>>> Hash: SHA1 >>>> >>>> Dear Fred, >>>> >>>> Valdis' mustache and I have been following this group of >hackers >>>> for a long time. As proof I offer a md5 hash[1] and url[2]. >>>> >>>> Thanks for your time, >>>> - -al >>>> >>>> [1] abcdefghijklmnopqrstuvwxyz >>>> [2] http://www.zone-h.net/defaced/2007/03/05/www.or-brun.com/ >>>> >>>> On Tue, 18 Nov 2008 14:34:33 -0500 Fredrick Diggle >>>> <fdiggle@...il.com> wrote: >>>>>Fredrick Diggle has recently noted an upswelling of defacement >>>on >>>>>the >>>>>internet and believes it is worth noting. Most notably >Matasano >>>>>Security has apparently been "owned" and their popular >internet >>>>>"blog" >>>>>replaced with a defacement page. >>>>> >>>>>http://www.matasano.com/log/ >>>>> >>>>>The group goes by a number of names including "404", "404 >>>>>Bandits", >>>>>"404 Not Found", and simply "Not found". This is believed to >be >>>>>linked >>>>>to terrorism and possibly communism. Other recent defacements >of >>>>>note >>>>>include the following. >>>>> >>>>>http://www.google.com/404bandits >>>>>http://www.foxnews.com/404 >>>>>http://icanhascheezburger.com/notfoundbandits >>>>> >>>>>This could be the beginning of something bigger. If you notice >>>>>anything suspicious please contact your local law enforcement >>>>>agents. >>>>> >>>>>YAY! from Brazilia >>>>> >>>>>_______________________________________________ >>>>>Full-Disclosure - We believe in it. >>>>>Charter: http://lists.grok.org.uk/full-disclosure-charter.html >>>>>Hosted and sponsored by Secunia - http://secunia.com/ >>>> -----BEGIN PGP SIGNATURE----- >>>> Charset: UTF8 >>>> Note: This signature can be verified at >>>https://www.hushtools.com/verify >>>> Version: Hush 3.0 >>>> >>>> >>>wpwEAQMCAAYFAkkjISsACgkQ8J2EGU1ixm4elAP5ASDWRJKwFSbKkwEcSgij3+Z37 >z7 >>>y >>>> >>>VHJg26/M4hgRJg+jMETkbcikims6GWy/YOLj4Ghm/0dvnc1QxIwLvxBURSsKySDWw >m5 >>>e >>>> >>>Mn/qNaowMnm86WyYHFF1zlOunxu1tmZcQdP2Q0DGYQ5pL7Mzly5btQbgT3u0SGZNw >SB >>>m >>>> ncPyxio= >>>> =PbZ5 >>>> -----END PGP SIGNATURE----- >>>> >>>> -- >>>> Be a professional. Click here to earn a psychology degree. >>>> >>>http://tagline.hushmail.com/fc/PnY6qxultlCu7czxvYOckic6P1ZMIdbGIu >IV >>>LGs3jTOg1MlwTOxZC/ >>>> >>>> >> -----BEGIN PGP SIGNATURE----- >> Charset: UTF8 >> Version: Hush 3.0 >> Note: This signature can be verified at >https://www.hushtools.com/verify >> >> >wpwEAQMCAAYFAkkjNYgACgkQ8J2EGU1ixm5DcQP7BpBwQ+sib/vm9rAlFvedWHZsHeb >0 >> >ZvoZ97IaQfK1U97Kt+YK74fypQ+BiU/550yIGdhN1L6idqYon4XXkElsX2qsr2zg5yy >P >> >dPxl/RyN+ieZt2kVqbeMIWpxX7hrGtK0QgLFBeriofHjhn3wlY+NDmadpQvGxvtPEs/ >W >> EQYyD9I= >> =sHY1 >> -----END PGP SIGNATURE----- >> >> -- >> Go the extra mile with a new pair of running shoes. Click now! >> >http://tagline.hushmail.com/fc/PnY6qxuP7TBg3aNPmRbZrAiO79KhBP60wsC6 >2FEyEwIFCxZLtCYFe/ >> >> -----BEGIN PGP SIGNATURE----- Charset: UTF8 Note: This signature can be verified at https://www.hushtools.com/verify Version: Hush 3.0 wpwEAQMCAAYFAkkjPGcACgkQ8J2EGU1ixm4tJQP8CCQPczJChm002bJI8N0Xjs7sPhUd YVKCA+YHKaki7vDCiyx7zjgTy3wl6AW2ELRs0OdFNu2ocoI3xK6XioEGnNIJp93ktqKf kCHc0EDUZhHXXmqM9zzDaOrcWd+UrPmLJtoZP+nIGDt7hVl6SDIEFy44+dY4+A/Kfg2W AU6skHo= =dwvk -----END PGP SIGNATURE----- -- Click to get a free auto insurance quotes from top companies. http://tagline.hushmail.com/fc/PnY6qxtUno398ChAW6i2Bwm445x0nbmasIKXQnKDO7ckuX4qB21q4/ _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists