iTnews
  • Home
  • News
  • Technology
  • Security

Australian police draw flack over cyber crime fiasco

By Shaun Nichols on Aug 21, 2009 10:38AM

Hackers' forum sting backfires.

An attempted major cyber crime bust appears to have backfired on Australian federal police.

Security experts have levelled sharp criticism at the authorities over the mishandling of the bust and subsequent failed efforts to secure the target site.

Authorities had infiltrated the r00t-y0u forum, a popular message board for hackers dealing in stolen credit card data. Australian police had tracked down and arrested the administrator of the site, gaining access to the forum controls.

US law enforcement used a similar tactic to shut down the Dark Market forum, gaining administrator clearance to the site then shutting the forum down after those connected to the criminal activity were apprehended.

However, it appears that the bust of r00t-y0u did not go nearly as well. Rather than silently operating and collecting further data, authorities posted a message to the front page of the board warning that all activity had been logged and was now in the hands of authorities.

The move all but ended the chances of further arrests and drew criticism from security experts. Christopher Boyd, director of malware research at FaceTime, said in a blog post that the decision was "so utterly stupid it defies description".

Boyd suggested that, in posting the message, authorities had allowed many of the criminals ample time to destroy evidence, and that the only individuals deterred from committing further activity would be a few novice hackers or 'script kiddies' that had stumbled onto the site.

"Take a forum down, sure, but don't tell the world you just did it without covering your tracks and don't assume they don't have a ring of fallback forums to go to while the main site is down," wrote Boyd.

"Doing something like this means other researchers and law enforcement don't catch their targets at points B, C and D because they already know they're being watched and have wiped all the evidence."

Boyd is not alone in his criticism of the bust. Shortly after the police message was posted, a hacker using the alias KillaWho reportedly gained access to the now police-controlled r00t-y0u site and posted a message taunting authorities.

"Everybody knows not to 'engage' in criminal activity, but we still do it, don't we?" the hacker wrote. "Your little post isn't going to stop anybody from doing anything."

Following the second defacement, the site was taken down. It is not believed that any other police systems were compromised in the attack.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
australianbustcrimecyberfederalforumhackerpolicer00ty0usecuritysting

Partner Content

Avoiding CAPEX by making on-premise IT more cloud-like
Promoted Content Avoiding CAPEX by making on-premise IT more cloud-like
Accenture and Google Cloud team up to create a loveable, Australian-first, renewable energy product
Promoted Content Accenture and Google Cloud team up to create a loveable, Australian-first, renewable energy product
Security: Understanding the fundamentals of governance, risk & compliance
Promoted Content Security: Understanding the fundamentals of governance, risk & compliance
How to turn digital complexity into competitive advantage
Promoted Content How to turn digital complexity into competitive advantage

Sponsored Whitepapers

Extracting the value of data using Unified Observability
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see
Beyond FTP: Securing and Managing File Transfers
Beyond FTP: Securing and Managing File Transfers
NextGen Security Operations: A Roadmap for the Future
NextGen Security Operations: A Roadmap for the Future
Video: Watch Juniper talk about its Aston Martin partnership
Video: Watch Juniper talk about its Aston Martin partnership

Events

  • Micro Focus Information Management & Governance (IM&G) Forum 2022
  • CRN Channel Meets: CyberSecurity Live Event
  • IoT Insights: Secure By Design for manufacturing
  • Cyber Security for Government Summit
By Shaun Nichols
Aug 21 2009
10:38AM
0 Comments

Related Articles

  • UTS to create secure research hub at Tech Central
  • WA gov expands Microsoft enterprise agreement
  • Cyber basics still beyond fed gov as Essential Eight mandate looms
  • Law firm mulls class action over NDIS software provider data breach
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Qantas calls time on IBM, Fujitsu in tech modernisation

Qantas calls time on IBM, Fujitsu in tech modernisation
Service NSW hits digital services goal two years early

Service NSW hits digital services goal two years early
NBN Co taking orders for 'non-premises' connections

NBN Co taking orders for 'non-premises' connections
Australian scientists build world's first quantum computer IC

Australian scientists build world's first quantum computer IC

Digital Nation

IBM global chief data officer on the rise of the number crunchers
IBM global chief data officer on the rise of the number crunchers
The security threat of quantum computing
The security threat of quantum computing
Integrity, ethics and board decisions in the digital age
Integrity, ethics and board decisions in the digital age
COVER STORY: Operationalising net zero through the power of IoT
COVER STORY: Operationalising net zero through the power of IoT
Crypto experts optimistic about future of Bitcoin: Block
Crypto experts optimistic about future of Bitcoin: Block
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.