90k US military email accounts posted to BitTorrent

Powered by SC Magazine
 

Hackers 'invoice' for security audit.

Hackers have stolen 90,000 usernames and encrypted passwords of US military personnel along with data on defence agency projects from defence contractor Booze Allen Hamilton.

The attack, dubbed “Military Meltdown Monday", included what appeared to be logins from US Air Force, Marine Corps, Homeland Security, and military personnel within the US Central Command (Centcom), special operations unit (Socom).

The data, including a SQL dump, is now circulating over BitTorrent.

Hacker identity Sabu said in a tweet that it was first of “two of the biggest releases for Anonymous in the last 4 years".

The group said it broke into a server that had “basically had no security measures in place” from where it ran a shell and “began plundering some booty”.

It said most of the 90,000 email account passwords were encrypted with Base64.

Booz Allen Hamilton said in a tweet that in line with “security policy, we generally do not comment on specific threats or actions taken against our systems”.

In a wryly message included with the data dump, the hacker group ‘invoiced’ the company for ‘auditing’ its security.

The attack is one of the largest in a string launched under the auspices of the Anti Security movement.

Details of a FBI identity project dubbed Special Identities Modernisation (SIM) were allegedly revealed after hackers broke into the servers of US engineering contractor IRC Federal on Friday.

Hackers said that project was a system to "reduce terrorist and criminal activity by protecting all records associated with trusted individuals and revealing the identities of those individuals who may pose serious risk to the United States and its allies".

“We also found fingerprinting contracts for the [Department of Justice], biometrics development for the military, and strategy contracts for the National Nuclear Security Administration.”

Hackers have stolen 90,000 usernames and encrypted passwords of US military personnel and defence agency projects through an attack on defence contractor Booze Allen Hamilton.

The attack, dubbed “Military Meltdown Monday, included logins from US Air Force, Marine Corps, Homeland Security, and military personnel within the US Central Command (Centcom), special operations unit (Socom).

The data, including a SQL dump, is now circulating over BitTorrent.

The group said it broke into a server that had “basically had no security measures in place” from where it ran a shell and “began plundering some booty”.

It said most of the 90,000 email account passwords were encrypted with Base64.

Booze Allen Hamilton said in a tweet that in line with “security policy, we generally do not comment on specific threats or actions taken against our systems”.

In a wryly message included with the data dump, the hacker group ‘invoiced’ the company for ‘auditing’ its security.

The attack is one of the largest in a string launched under the auspices of the Anti Security movement. Details of a FBI identity project dubbed Special Identities Modernisation (SIM) were allegedly revealed after hackers broke into the servers of US engineering contractor IRC Federal on Friday.

Hackers said that project was a system to "reduce terrorist and criminal activity by protecting all records associated with trusted individuals and revealing the identities of those individuals who may pose serious risk to the United States and its allies".

“We also found fingerprinting contracts for the [Department of Justice], biometrics development for the military, and strategy contracts for the National Nuclear Security Administration.”

 

Copyright © SC Magazine, Australia


90k US military email accounts posted to BitTorrent
 
 
 
Top Stories
Innovating in the sleepy super industry
There’s little incentive to be on the bleeding edge, so why is Andrew Todd fighting so hard?
 
How technology will unify Toll
The systems headache formed through 15 years of acquisitions.
 
Immigration breached Privacy Act with data leak
Pilgrim slams "copy and paste" of asylum seeker data.
 
 
Sign up to receive iTnews email bulletins
   FOLLOW US...
Latest Comments
Polls
Who do you trust most to protect your private data?







   |   View results
Your bank
  38%
 
Your insurance company
  3%
 
A technology company (Google, Facebook et al)
  7%
 
Your telco, ISP or utility
  8%
 
A retailer (Coles, Woolworths et al)
  2%
 
A Federal Government agency (ATO, Centrelink etc)
  20%
 
An Australian law enforcement agency (AFP, ASIO et al)
  15%
 
A State Government agency (Health dept, etc)
  5%
TOTAL VOTES: 842

Vote