iTnews

Did Lulzsec's slip seal its fate?

By Dan Kaplan on Mar 5, 2012 11:12AM
Did Lulzsec's slip seal its fate?

British IP address used to log into website.

Infamous hacking group LulzSec may have sealed its fate after logging into its website using a router based in Britain, where alleged member Ryan Cleary would later be arrested.

The group signed up for a free account with CloudFlare, a service that optimises the speed of websites and mitigates attacks levelled against them.

The sign-up occurred within hours of a hack of US news service PBS, where LulzSec posted a fake story. 

During its 25 day tenure with CloudFlare, a lone British IP address was recorded logging into lulzsecurity.com.

The IP address stood out because other log-ons were made through virtual private networks routed through other countries.

Authorities were further assisted because the username registered with the site was the same as that used in a chat room they monitored.

CloudFlare CEO Matthew Prince told the RSA conference last week that his firm "made lots of friends with some three-letter [law] agencies" while it mitigated attacks against lulzsecurity.com.

He was tight-lipped about the information it provided to authorities and said only that the company complies with "valid subpoenas".
 
The lulzsecurity website was also repeatedly attacked with layer 7 and layer 3/4 distributed denial of service (DDoS) and reflection attacks, along with IP scans and attacks on router interfaces.
 
"You couldn't pay for pen testing like this," Prince said. "It was a learning experience.”
 
Prince said he did not regret accepting LulzSec to the service, noting that the website did not distribute malware, phishing scams or child pornography, all of which would infringe the company's policies.
 
"We don't play censor," he said, noting that he was “not sure what we would've done” if law enforcement had asked CloudFlare to cut LulzSec off.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
cloudflare hacking lulzsec rsa 2012 security

Partner Content

MSI shows first laptops with Wi-Fi 6E, Nvidia RTX 30 graphics
Partner Content MSI shows first laptops with Wi-Fi 6E, Nvidia RTX 30 graphics
MSI launches innovative new laptops
Partner Content MSI launches innovative new laptops
Improving returns from SD-WAN spending
Sponsored Content Improving returns from SD-WAN spending
NCS expands into Australia in partnership with Optus Enterprise
Sponsored Content NCS expands into Australia in partnership with Optus Enterprise

Sponsored Whitepapers

The risky business of open source
The risky business of open source
Ensure your e-signatures are legally binding
Ensure your e-signatures are legally binding
Mitigating open source risk in your organisation
Mitigating open source risk in your organisation
How to choose a WAF that's right for you
How to choose a WAF that's right for you
The global telco 5G cloud gaming opportunity
The global telco 5G cloud gaming opportunity

Events

  • On-Demand Webinar: How Poly and Microsoft are Embracing Future Work Environments
  • Beat the DDoS blackmailers in 2021
By Dan Kaplan
Mar 5 2012
11:12AM
0 Comments

Related Articles

  • US charges seven over wide-ranging hacks
  • NSA, FBI expose Russian intelligence hacking tool
  • US officials now worry about election logistics more than hacking
  • US offers bounties on election-interfering nation state hackers
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Telstra blasts plan to 'set aside' mobile spectrum for Optus and TPG, but not it

Telstra blasts plan to 'set aside' mobile spectrum for Optus and TPG, but not it

Google unravels state-of-art Android and Windows exploit chains

Google unravels state-of-art Android and Windows exploit chains

Tyro halts trading following week-long outage

Tyro halts trading following week-long outage

Woolworths to build a platform to host subscription-based services

Woolworths to build a platform to host subscription-based services

You must be a registered member of iTnews to post a comment.
Log In | Register
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.