Indictments and criminal complaints for Anonymous/LulzSec members Sabu, Kayla, Topiary, Anarchaos, Palladium, Pwnsauce released March 6, 2012.
US citizens and assets – including the White House, the Central Intelligence Agency, InfraGard, the state of Arizona, and major defense contracting companies – experienced high-profile cyber threats and attacks in the first half of 2011. Most of the tactics and techniques used were not new, however the increase in attacks during the past few months exemplifies the growth of cyber incursions and reinforces the need to be aware of risks and mitigation techniques associated with cyber threats.
The FBI assesses with high confidence a that law enforcement personnel and hacking victims are at risk for identity theft and harassment through a cyber technique called “doxing.” “Doxing” is a common practice among hackers in which a hacker will publicly release identifying information including full name, date of birth, address, and pictures typically retrieved from the social networking site profiles of a targeted individual.
Department of Homeland Security National Cyber Security Division presentation on “Cyber Resilience” with overviews of recent hacking incidents, including many connected with the hacktivist group Anonymous.
This Bulletin is being provided for your Executive Leadership, Operational Management, and Security Administrators situational awareness. The actors who make up the hacker group “Anonymous” and several likely related offshoots like “LulzSec”, continue to harass public and private sector entities with rudimentary exploits and tactics, techniques, and procedures (TTPs) commonly associated with less skilled hackers referred to as “Script Kiddies”. Members of Anonymous routinely claim to have an overt political agenda and have justified at least a portion of their exploits as retaliation for perceived ‘social injustices’ and ‘freedom of speech’ issues. Attacks by associated groups such as LulzSec have essentially been executed entirely for their and their associates’ personal amusement, or in their own hacker jargon “for the lulz”.
CBP BorderStat drug seizure information was used to evaluate seizure statistics in relation to the arrest or death of key DTO personnel. The drug seizure data was collected from January 2009 through January 2010. This data was analyzed to determine if the arrest or death of key personnel had a direct impact on the flow of U.S.-bound drugs. This research indicates that there is no perceptible pattern that correlates either a decrease or increase in drug seizures due to the removal of key DTO personnel.
The National Cybersecurity and Communications Integration Center (NCCIC), through coordination with its partners and monitoring of multiple sources, is tracking reports that members of the hacktivist collectives ‘LulzSec’ and ‘Anonymous’ have combined their efforts and continue to perpetrate cyber attacks targeting U.S. and foreign networks. LulzSec Members have posted statements on the internet claiming the attacks, referred to as ‘Operation AntiSecurity’ (AntiSec), are ‘designed to demonstrate the weakness of general internet security’ and have allowed them to collect massive amounts of data. LulzSec is purported to be a group of former Anonymous members who typically use widely available and crude tools to hijack or deface web pages as a political statement. They also routinely post information regarding planned and ongoing activities on publicly available Internet Relay Chat (IRC) sessions and social networking sites like Twitter. Recent attacks by LulzSec and Anonymous have proven simple Tactics, Techniques and Procedures (TTPs) are often successful, even against entities who have invested a significant amount of time and capital into designing and securing their information networks.
A bulletin released in late June by the Department of Homeland Security’s (DHS) National Cybersecurity and Communications Integration Center (NCCIC) warning of the recent activities by LulzSec and Anonymous has surfaced online. The unclassified bulletin titled “Hacktivist Groups Target U.S. and Foreign Networks” was recently posted to an unknown online network security website Aisle.net before being subsequently removed. The site it was posted to has also disappeared and now visitors to the domain are greeted with a blank screen. While the full document is not recoverable at this point in time, a cached version of the document’s summary contains a number of surprising admissions regarding the effectiveness of basic techniques utilized by LulzSec/Anonymous.
Historically, indoor Marijuana-Mushroom grows have been “no big deal” to law enforcement as a HazMat or public health concern. However, due to recent Arizona events the Department of Public Safety would like to bring situational awareness to law enforcement (LE) and first responders regarding the hazards associated with responding to indoor marijuana grow locations. This information is provided for officer safety purposes.
On April 8, 2011, an undercover officer working as part of a drug task force was shot while conducting surveillance. The officer survived the shooting but suffered injuries not only related to being shot but also from having his vehicle rammed several times during the incident. This bulletin is being produced to help outline some of the officer safety issues discussed during the initial review of the shooting incident, which may impact your future surveillance operations. The investigation into this shooting is on-going so specific details are not included, as to avoid compromising that investigation.
Barry Cooper operates a website: Never Get Busted.com were he sells self-produced videos titled “Never Get Busted Again,” “Never Get Raided” and a police training video on locating hidden compartments he made while still an interdiction officer. These videos show viewers how to “conceal their stash,” “avoid narcotics profiling” and “fool canines every time,” according to the website. Barry Cooper is a proponent for the legalization of marijuana and was a Libertarian candidate for U.S. Congress District 31 in Texas. Barry Cooper lives in Tyler, Texas and appears strongly motivated to prove his contention that marijuana should be decriminalized and enjoys the publicity generated by this ruse. He has stated an intention to operate again in Odessa, Texas and elsewhere. Barry Cooper and his associates at Kobusters.com have shown the technical ability to stage this type of action and the knowledge to hire “actors” to execute this type of ruse in order to further substantiate their false claims.
El Paso Intelligence Center: A Police Officer’s Reference Guide to Detecting Illicit Trafficking by Aircraft from October 2009.
New York State Intelligence Center Concealment Smartbook from April 2009.
As of June 2010, MS-13 members in Los Angeles have directed operational activities of new MS-13 members in Birmingham, United Kingdom, using gaming consoles such as Sony Playstation and Microsoft Xbox 360. The MS-13 leaders appear to be taking advantage of the devices’ voice over internet protocol (VOIP), text chat, virtual world, and video teleconferencing features, which allow them to communicate with fellow gang members overseas.
FBI Phoenix Division Cyber Crime Report “Botnet Owners Share Honeypot Internet Protocol Addresses in Attempt to Avoid Law Enforcement and Security Vendor Scrutiny”.
Bureau of Alcohol, Tobacco, Firearms and Explosives Project Gunrunner Southwest Border Strategy Weapons of Choice from February 2008.
The 2008 Homeland Security Threat Assessment (HSTA) is a strategic assessment looking out five years. The HSTA represents the analytical judgments of the Department of Homeland Security (DHS) Intelligence Enterprise (IE) regarding the critical threats to the U.S. Homeland that the Department will need to address in the period 2008-2013.
The information contained in this bulletin identifies a tactic recently employed against an Arizona Department of Public Safety (AZ DPS) officer. The incident occurred at a scheduled demonstration by a known citizen action group to protest the traffic cameras on Arizona’s highways. This information is provided for situational awareness to assist law enforcement engaged in public event site security; and for those monitoring potential threats at public gatherings.
There are many different ideologies that an anarchist may follow. Although there may be a number of differences, they all contain the same central belief. Anarchism is the idea that government (the state) is unnecessary and harmful. Anarchy is society without government. Anarchists are people who desire to live in a society without ru-lers as their ancestors once did. The main belief is that the community in which they live be dependant only upon itself. People who believe in government (such as liberals, conservatives, socialists and fascists) are known as “statists”. Anarchism opposes all forms of hierarchical control.
The Sovereign Citizens and Militia Movements have been in existence for a number of years and remain active throughout the US today. The Sovereign Citizen Movement began in the 1970’s when groups/individuals adopted right-wing anarchist ideologies originating from the theories of the group called the Posse Comitatus. The Militia Movement began to form not long after the 1993 Waco, Texas incident.