High-profile hacker arrests a coup for FBI, analysts say

Penchant for publicity may have done in LulzSec and Anonymous hackers

Security analysts said that the today's FBI arrest of of several prominent LulzSec and Anonymous hackers demonstrates that U.S. law enforcement agencies effectively fighting cybercrimine.

The United States Attorney's Office for the Southern District of New York today said that four United Kingdom residents were arrested on hacking charges related to a series of high-profile attacks against HBGary , Sony , and other organizations over the past year.

Another alleged hacker, identified as Jeremy Hammond of Chicago was arrested in the that city late today on charges related to a Dec. 2011 intrusion at security intelligence firm Strategic Forecasting Inc. (Stratfor).

Authorities used information provided by Hector Monsegur, the leader of LulzSec prior to his arrest last year. Monsegur, also known as "Sabu, pleaded guilty last August to 12 hacking charges and faces up to 124 years in prison, the U.S. Department of Justice said.

Monsegur's was said to cooperate with the FBI in hopes of a reduced sentence.

The arrests are a major victory for FBI investigators, who have been under growing pressure to respond to the often taunting attacks by members of the Anonymous and LulzSec hacking colectives.

"They did a heck of a job in hunting down the ringleader and turning him around so they could go deeper into the stack," said Rich Mogull, an analyst at Securoris. "This is classic law enforcement."

The four hackers arrested in the United Kingdom were identified as: Ryan Ackroyd, also known as "kayla"; Darren Martyn, also known as aka "pwnsauce"; Donncha O'Cearebhail, also known as "palladium"; and Jake Davis. also known as "topiary."

All four are have been indicted on hacking and other charges related to the intrusions at HBGary, Sony, Fine Gael, a political party in Ireland and numerous other websites.

Officials said the four alleged cybercriminals belonged to an Anonymous splinter group called Internet Feds when they carried out many of the attacks.

In May 2011, following the massive publicity surrounding the HBGary and Fine Gael attacks, Ackroyd, Martyn, Davis and Monsegur formed LulzSec.

The LulzSec collective was involved in several attacks around the world. Though the alleged ackers claimed the attacks were carried out in humor, LulzSec in reality stole confidential and personal information, publicly disclosed that information and defaced websites of its victims, according to the indictment filed in the case.

"LulzSec sought to gain notoriety for their hacks by varied and repeated efforts to broadcast their acts of online destruction and criminality," the document noted. Ackroyd, 23, from Doncaster, United Kingdom, David, 29 of Lerwick, United Kingdom and Martyn, 25 from Galway, Ireland each face two computer hacking conspiracy charges and face up to 20 years in prison if convicted.

O'Cearebhail from Birr, Ireland faces up to 10 years in prison on one count of hacking for his role in the attack against the Fine Gael website.

Hammond was charged with hacking the website of security think tank Stratfor last December.

Hammond and his co-conspirators are alleged to have illegally accessed and leaked email and account information belonging to about 860,000 Stratfor subscribers. Hammond is also charged with stealing data stored on some 60,000 credit cards from Stratfor's site and using it to make $700,000 in purchases.

Court documents filed in connection with today's arrests reveal some details about Monsegur's role in the arrests today.

As a member of LulzSec, Monsegur primarily functioned as a "rooter," whose role is to find vulnerabilities in systems. He also provided other hackers with access to servers and routers that could be used to launch attacks.

According to the DOJ, Monsegur took part in high-profile hacking attacks against cybesecurity firm HBGary, Sony, Fox Broadcasting, PBS, Chicago Tribune and the L.A Times among others.

He also participated in the Dec. 2010 distributed denial of service attacks against PayPal and MasterCard in retaliation for their actions against whistleblower website WikiLeaks.

After his arrest. Monsegur, identified in one document as CW-1, agreed to cooperate with the government.

He provided assistance to the FBI in its investigation of the Stratfor hack, and engaged in several incriminating IRC chats in which Hammond and members of Anonymous and LulzSec allegedly admitted their roles in various attacks.

The arrests today are not surprising, said Rob Rachwald, director of security strategy at Imperva.

By attracting a lot of attention, LulzSec and Anonymous have "stuck a finger in the eye of law enforcement which obviously had no option but to go after them with a great deal of resource and effort."

He also noted that the groups "didn't have purpose. They were just randomly hacking a bunch of different" people with the resources to respond.

John Pescatore an analyst at Gartner said that informants and undercover police work have been the way most traditional crime gangs have been taken down.

The same approach appears to have worked in this case, he said. "Human intelligence and doing the same thing the attackers do in taking advantage of human frailties is still the most effective way to take down criminals," he said.

Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan , or subscribe to Jaikumar's RSS feed . His e-mail address is jvijayan@computerworld.com .

Read more about cybercrime and hacking in Computerworld's Cybercrime and Hacking Topic Center.

Join the Good Gear Guide newsletter!

Error: Please check your email address.

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Jaikumar Vijayan

Computerworld (US)
Show Comments

Most Popular Reviews

Latest News Articles

Resources

PCW Evaluation Team

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Aysha Strobbe

Windows 10 / HP Spectre x360

Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!

Mark Escubio

Windows 10 / Lenovo Yoga 910

For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?