Wow...I'd like to see where this goes. This is gutsy, and apparently they know what they're doing and they mean business. Their message is clear, concise, and I don't completely disagree with them. Interesting.
toasterroaster
· 5 months ago
Business, LOL. Man maybe I should just start CPing the crap that I find leftover and altered by people. They may seem cool, but they did something very simple, not that flashy. If they wanted to make a statement, try something that's actually hard and not something that's just big and simple. Go hack microsoft or some other bigshot company, I'm sure it'll be a lot harder. They self justic peeps, trying to be some type of organized anon or mass kira of the ewebs irl. >_> They're nothing.
DreadRed
· 5 months ago
...This... is only... THE BEGINNING!!! =O
StevieG
· 5 months ago
Yeah, a Mashable post that doesn't mention Twitter or Facebook. Evidence Mashable has been hacked as well!
Loucetios
· 5 months ago
You're a fucking idiot..
hack microsoft, what kind've retarded statement is that..
if it was so simple why don't you just explain it for us
toasterroaster
· 5 months ago
Never said it was simple, I said try something harder like Microsoft. You misread.
...
· 5 months ago
Haha. A DeathFag posting online.
...
· 5 months ago
Let's see you do something like that. Go for it, amuse me. I want to see every one of my images, replaced with, "See? You guys are just another Kira, anti-sec." You couchbitchers think this is all so easy, because you see a few command prompts or shells run through with a few lines of words really fast, in front of a nerd, in a few movies. Show me how easy this is. You may have to get out your recent Die Hard movie for this one. Maybe try a mini "Fire Sale" while you're at it, Mr. SuperHacker? Heh. I'd be surprised if you could tell me what shellcodes are.
Loucetios
· 4 months ago
ehh yeh you did
"They may seem cool, but they did something very simple"
You can either mean this two ways;
- Technically it's simple. If you mean this, it's just retarded, a zero day exploit for SSH isn't just something you come by every day, or happen to figure out after a bit of a browse through Milw0rm
- As a statement it's simple. If you mean this, what were you expecting? A flash movie? It's an image hosting site, they're not looking to cause damage or bring it down.
As for hacking microsoft, as I said, retarded statement. It's been done, numerous times. The amount of zero-day exploits for Microsoft products ranges in the hundreds, most are patched now. But every Microsoft OS has had a zero-day exploit. This is the first OpenSSH zero-day I've heard of.
You don't even probably understand what these guys have done (not that I'm advocating it), this isn't just a website defacement. They gained COMPLETE control of their systems. They could've uploaded viruses and all sorts of shit.
They engineered it so that everyone's image was replaced with the image you see on the blog. I doubht that was anywhere near "simple" considering they did it all through an ssh terminal commands.
I'm sorry but don't pretend to know what you're talking about when you don't. And especially don't make retard statements like "hurr it's only imageshack, go HAX micro$oft, much harder guise".
G A M T
· 4 months ago
Never said it was simple? "If they wanted to make a statement, try something that's actually hard and not something that's just big and [[SIMPLE]. "
You contradicted yourself you know? You sound like hacking imageshack was easy.. "go hack some other bigshot company" Yeah like imageshack isn't some big company that millions goto?
Mass kira? Shoot you don't deserve my reply. Comparing a hack to an anime.. hahaha. Ignorance is pouring from your comment.
none
· 4 months ago
Was this really more than a .htaccess URL rewrite rule? Seems simple to me.
G A M T
· 4 months ago
How about getting access to the server in the first place? To get to the htacess file you need to get access to the server. So unless you think getting access to a server is easy.. well yeah it's simple.
hurfdurf
· 5 months ago
Look up the definitions for "clear" and "concise." This little rant was neither.
Sebastian Baliantz
· 5 months ago
ANTI SEC IS A BUNCH OF NERDS THAT PLAY WARCRAFT..... ANTI-SEC = ANTI SEX, CAUSE THEY NEVER GET LAID... HAHAHAHAAA
G A M T
· 4 months ago
First off all caps = ignorant bastard.. secondly.. I'm sure you didn't understand the message this group has sent to the web. Bah.. the message wasn't for you anyway..
Sebastian Baliantz
· 4 months ago
of course I understood what they are about but they broke rule #1 of ethical hacking, DO NOT HACK INNOCENTS. the fuck kind of idiot thinks Imageshack has anything to do with firewalls or PC security.
Yeah it took skill on their part to do, but seriously wtf are they trying to accomplish? so they are a bunch of smart people that are bored, why not do something to benefit others, instead of drawing attention to themselves for fun... yeah, that was a smart move geniuses.
You can't justify this action, people that have nothing to do with their cause were affected, that only puts people at opposition to your cause, and I'm not one to sit back and not say shit just because the other people are too scared to.
G A M T
· 4 months ago
Sebastian, they didn't affect any of your images.. Your images and others were still there after ImageShack got rid of the hack.. Unless it was something terrible that your avatar was replaced for a day. "attention to themselves for fun" What we don't even know the anti-sec group.. How could that bring attention to them.. It's not like they have a myspace and everyone is adding them.. the only attention they wanted was to show their message.
But I guess they weren't thinking people would pay attention only to the part that said anti-sec.
Tacklebox
· 5 months ago
these guys from the Anti Sec Movement should seriously get laid VERY soon
Frostbite
· 5 months ago
Just another lame threat by some kids that found an exploit. Nothing new. As for tacklebox and his "they need to get laid" comment, what the hell good is that gonna do? Retard. People like you need to go back in the men's locker room and continue patting each other on the ass with your testosterone-soaked arm patches.
Ike
· 5 months ago
Full disclosure is indeed a problem, as it is unethical to release the details of an exploit into the wild before the vendor is given ample time (i.e., 6 months or more), through direct contact to the vendor only, to fix the problem.
However, an "anti-sec" movement that threatens "ownage" of security sites is a paradox that solves nothing. Instead of attacking avenues of security information, it is more reasonable to educate about the dangers of full disclosure. Then, if you are a radical organization and sites refuse to comply, they invite their own fate.
Frank
· 5 months ago
As a user of software, I prefer there not being a full 6 month window when my system is vulnerable. If the vendor takes 6 months at minimum to fix an exploit, I'd like to know so I can stop using it.
...
· 5 months ago
With full-disclosure, you would rather not have your system be vulnerable for 6 months. If you're using any copy of Windows, average time to fix an exploit (public or not) is over 9 months.
If an exploit is not released (AKA full-disclosure), then only a few people have this information - and what are the chances they'll use it to you. Not so great.
You don't realize it, but you've just made a solid case for the anti-security movement. :)
Reid
· 5 months ago
Security through obscurity never works. Thanks for trying though.
...
· 4 months ago
Full Disclosure is NOT "Not releasing an exploit... that's 0disclosure... Full disclosure is disclosing the exploit you g00n...
Dee
· 5 months ago
Full disclosure is NOT a problem under the appropriate circumstances. It is just as unethical of a vendor to sit on fixing a vulnerability brought to their attention by a concerned researcher. Unfortunately, many of them do until forced to address it by the threat of full disclosure.
Do some interwebs research on the subject to discover what I mean: network routing devices, ATM devices, electronic voting machines, and the ever present apps, then make up your own mind based on the facts, not on an emotional response.
Regards
Reid
· 5 months ago
Six months?!?!? What planet are you on? Seriously, given a good bug report, Theo (OpenBSD) has stated that a fix can be done within hours. And that's an OS, not some relatively simple (web) app. Seriously, a few weeks tops is all that is really needed and even then, that's only for politeness. Lazy vendors are there own problem and the security industry shouldn't be blamed for that.
mini
· 4 months ago
If something in an OS has a fix out within hours, I am worried... what other holes are being opened with a not properly QA'd fix??
px
· 4 months ago
Except you are comparing full disclosure with responsible disclosure. Antisec is the complete opposite direction. Antisec says that when you find bugs, either leverage the bug for your own personal gain as much as possible, or sell the bug to the highest bidder. Antisec does not want vendors informed ever. Antisec wants there to be an elite class of underground hackers that run the internet, as opposed to the kiddie free for all that exists at the moment.
LettertoJane
· 5 months ago
How pathetic.
Ian
· 5 months ago
it's funny :)
Sebastian Baliantz
· 5 months ago
LAWLYZ ANTI SEC SOUNDS LIKE A BUNCH OF RAGING FAGS LMFAO why hack a picture site? maybe because they aren't hackers THEY ARE LAMERS LMFAO (API HOOK=EAT SHIT HAHAHAAA WHAT A BUNCH OF FAGS)
King Joe
· 5 months ago
Because it gets their message to every site you visit.
Nearly every forum alone will have members using imageshack.
That's why, you fail.
sultanofseo
· 5 months ago
this is stupid because it makes literally no sense. how does Imageshack, founded by SA member macbeth, have anything to do with security or facilitating full disclosure of leaks (which I agree are a nuisance because of scriptkiddies relishing in the info).
Sebastian Baliantz
· 4 months ago
it was a rhetorical question you inbred dumbfuck ever heard of sarcasm or do you play warcraft too fucking much loser FUCK THE ANTI SEC you heard me. come do something about it then wioth your fake ass keylogging on twitter loser ass I'll leave ports open for ya faggots. come get some
really
· 5 months ago
API hooking doesn't affect linux servers.
Wallace
· 4 months ago
When I see posts in forums or message boards like Sebastian Baliantz it makes me sick. Guys like that should turn off there computers and continue playing with their ninja turtles action figures.
Andrew
· 4 months ago
You sound like you're raging more than these guys. And you made yourself sound so stupid. Read King Joe's comment and you'll see how retarded you are.
Sebastian Baliantz
· 4 months ago
uh oh another anti-sec groupie nerd is angry LMFAO HOW GAY
kajdhas
· 4 months ago
Please get off the internet. You are making us all look bad.
This is ridiculous! I'd wish people would find something better to do with their time instead of making other's lives difficult.
Jason
· 5 months ago
If everyone did that then nobody would do anything...
Michael Jahn
· 5 months ago
@ Erica Simmons - that is pretty much what the people running England were thinking back around 1775. Sometimes change requires disruption and anarchy.
wut
· 5 months ago
Are you joking? Did you even read their rant? The goal of this wasn't just to make people's lives difficult.
Rachel Levy
· 5 months ago
It seems to be back up now
Mike Chelen
· 5 months ago
Isn't the advantage of full disclosure that software developers and site operators can find out when flaws exist, rather than having them be silently exploited indefinitely?
Ike
· 5 months ago
This is exactly why full disclosure must be explained to the masses. Full disclosure is NOT mere disclosure to the development community for a package. Full disclosure is disclosing the details of an exploit (including factors that could allow easy reproduction of the exploit) in the open. Disclosing the vulnerability to the vendor is normal (and ethical), then the vendor should be given time to repair the problem.
Educate yourself about full disclosure.
Mike Chelen
· 5 months ago
Agreed that responsible disclosure must include both a reasonable attempt at giving the developers a chance to address the flaw, and a description of all pertinent details to understand the exploit and how to fix it. If the intention is to improve computer security, then these methods would hopefully serve to share new discoveries in the least harmful manner.
Sebastian Baliantz
· 5 months ago
lmfao these idiots just want to call themselves hackers they are morons
Michael Jahn
· 5 months ago
WORD.
Ziv
· 5 months ago
The advantage of full disclosure is so that individuals, not developers can be aware that flaws exist, rather than having them silently exploited by hackers who distribute exploits among themselves anyway.
Ari
· 5 months ago
Dude, you are not getting it. Most individuals are not running OSS operating systems and even if they are it does not mean that they would have to skills to fix the issue for themselves let alone others. Full disclosure goes beyond revealing that a particular feature in a product has a vulnerability and discloses details of the vulnerability including an example exploit. That information is useless to the average user but it can be used by other black hat hackers to create exploits of the vulnerability and spread it in the wild.
You are assuming that all of the hackers will secretly distribute the exploit somehow without anyone finding out. That is highly in the internet age. I would rather have the exploit revealed to the vendor and possibly partial disclosure of the vulnerability to the extent that the end user can possibly temporarily disable the vulnerable feature until a patch is released without giving details to other unaffiliated hackers groups.
Reid
· 5 months ago
You're assuming that the "blackhats" haven't already found it. Are you so sure that's a good assumption?
Security through obscurity never works.
rachel
· 5 months ago
it ruined the background of my layout, that's when i realized this happened :/
Erica Simmons
· 5 months ago
Yeah that's what happened to mine too!
Jenn
· 5 months ago
That happened to mine, too. NOT happy.
Sebastian Baliantz
· 5 months ago
JUST ERASE THE ONES AFFECTED AND REUPLOAD THEM PROBLEM SOLVED :D
Normal Use
· 5 months ago
Or, and stick with me here I know it's a crazy idea, host your background on your own server. That way you have full control and users aren't bothered by their browser having to hit multiple domains just to get a page loaded.
Nothing worse than sitting on a page waiting for it to load and seeing the browser is held up because it's waiting for some 3rd party domain to respond.
Nex
· 5 months ago
Dude fuck DNS. Just memorize her IP number and skip the overhead.
wealthychef
· 5 months ago
Looks like their plan is not so stupid, eh? Look up "Barbara Streisand effect" sometime when you're bored.
Rick
· 5 months ago
Worthless hackers. My account has a number of their stupid manifesto images.
Lily
· 5 months ago
Sucked. Had to transfer all my images over to tinypic so I wouldn't have to shut the site... still lost a few and am seriously hoping they are recovered.
Charlie
· 5 months ago
My brother's band Myspace page ( www.myspace.com/splittheseas ) had all the images hacked by this hacker-system. Now it seems some of the images are getting better, but whatever "Anti-sec" is, it needs to screw off.
Anon
· 5 months ago
your brother's band sucks ass.
vince
· 5 months ago
If I find anybody IRL talking about how they were part of this, I will string them up by their toes and jam splinters under the toe-nails.
...
· 5 months ago
Don't like it? Sucks to be you, I was part of it. Not actively, but I condone this. You may not like this, but that just means you should support Anti-sec even more. They got in because of full disclosure [pretty much means making it public, how to hack into sites like this.] That's how they knew how to do it. So, support them. You both want the same things; things like this to stop, or be harder to do.
Sebastian Baliantz
· 5 months ago
LOL YOU WERE IN ANTI SEC AND YOURE HOME ALONE ON A FRIDAY NIGHT ON THE INTERNET WHY AM I NOT SURPRISED... LMFAO FUCK THE ANTI-SEC YOU DO KNOW HOW MANY PEOPLE IT AFFECTED? HOW MUCH YOU WANNA BET SOMEONES GOIN TO JAIL LMFAO @ THE ANTI SEX FAGS
...
· 5 months ago
This kid is hilarious. God, I hope I didn't sound that pathetic when I was 16. Sorry son, you had nothing to do with antisec, nor did whoever did this. The antisec folks are about twice your age now. A word of advice, if you ever want any respect at all in the hacker community, learn not to take yourself so seriously. There is no crusade, and you are not a part of it.
Signatures on a forum I post are dropping like flies.
QuickZips
· 5 months ago
We at Italic Forums were shocked to discover that our banner and many images were totally wrecked by this Anti-sec. Luckily, already peeved with imageshack, I re-hosted and backed up most of the images. However, I didn't manage to back-up everything. I'm gonna cry.
Unless we've fixed it already, Italic Forums will show you a great example of how much damage this little hack has done. What a pain in the ass.
QuickZips
· 5 months ago
Nevermind, we fixed it. The forum isn't an example anymore. Find another site that got destroyed by this hack.
Jon Revelle
· 5 months ago
Had to shut my site down temporarily because of these wackos, all of the images, buttons, and such were hosted at Imageshack. Crap.
I'm a little disappointed because I work with an AIDS oranganization and use imageshack to upload my stuff for like, our myspace and what not to promote events were doing to raise money. We've got two very large fundraisers coming up with restaurants that NEED the flyer to be presented, so I uploaded to imageshack to distribute it...They've now been replaced with the manifesto... :/ Great...Time to go redo it all...
...
· 5 months ago
Sorry to say this, but, whine about it less. If it's that important of an organization, set up an Apache server, and host the images yourself. If you won't do that, because you don't want to take the time, why should other organizations and companies be held accountable for your organization's stuff, when they're doing you a favor in the first place? Apache is free also, and can be set up with minimal tech knowledge. There are also guides everywhere, and a few images won't be hard to host at all. You could even make yourself a site, if you wanted. If you can't set up an apache server because of bandwidth strain, then you are a large organization, quit being cheap and get some real Large Organization hosting, instead of being cheap... Myspace, really? But in the event you are a small organization, then you could host an apache server, since it is simple, and becasue of being a small organization, you should get a small amount of views, and therefore need a small server, and a small amount of bandwidth. Don't bite the hand that feeds you. ImageShack does what they can for you for free, so don't whine about it when they have issues outside their control. And if you have to REDO it all, you are, quite frankly, a complete retard. You should ALWAYS back up your work, or what you get, is fully deserved. Grow up. If you have a job, do it, and do it right, or else you don't deserve your job.
Dspa01
· 5 months ago
Holy shit you're a fucking idiot.
Sebastian Baliantz
· 5 months ago
LAWLYZ @ THIS ANTI-SEC GROUPIE FAG SAYING "GROW UP" HAHAHAAA
Anon
· 5 months ago
... That's taking it to far, I'm willing to bet that sammy's AIDS organization relies almost solely on other people donations, and in return they promise to use those donations to assist people afflicted with AIDS. Don't be talking like that to a person who is in such a good organization.
wut
· 5 months ago
On the one hand, I agree that he's being too harsh, but he's also right that sammy should host the images him/herself.
LadyVanity
· 5 months ago
oh dear.... no wonder my site has gone all wonky... link buttons gone and the layout looks really bad. i hope imageshack will b up and running soon if not im gonna have to switch somewhere else :(
Hayabusa
· 5 months ago
well i need those images to be working!
GRR
ImageShackFan
· 5 months ago
Fucking ass holes.. They should go to hell
belolats
· 5 months ago
My blog was a victim too. I had to transfer my hosted images to flickr. I posted about this incident on my blog too: http://www.belolats.com/2009/07/is-imageshack-h.... Can someone please explain further about the Anti-Sec Movement?
keonda
· 5 months ago
My warning card was ready a few minutes ago when I received a report of oversize avatars in the forum... mean while avatars got shutdown in forum. I hope they fix it soon very inconvenient. Thanks for posting it!
David
· 5 months ago
hmmm i noticed my pics hosted there were not loading so it seems some pics were lost, if only temporarily. So i uploaded to photobucket for now. Anyway, this sounds really stupid.
Anonymous
· 5 months ago
Meh. Hope it back soon.
Doomish
· 5 months ago
I have a comic going that I upload through imageshack since it's easy, and every single comic (all 65 of them) showed this image for an hour or so, and then became broken images. It was both angering and pathetic at the same time.
belolats
· 5 months ago
My blog was a victim too. I had to transfer my hosted images to flickr. I posted about this incident on my blog too: http://www.belolats.com/2009/07/is-imageshack-h.... Can someone please explain further about the Anti-Sec Movement?
Epit
· 5 months ago
yeah... all you guys that whine about your 'sites' being ruined... wtf, get a life. Just cause your pictures or "background" isn't working right now doesn't mean you should go have a hissy fit. Get a grip.
Brian Diadem
· 5 months ago
For graphic designers with LOTS of clientele, all hosted on ImageShack, it's a nightmare.
n3xg3n
· 5 months ago
If I hired a graphic designer who hosted everything on ImageShack, I would be looking for a better graphic designer. That's absolutely unprofessional.
...
· 5 months ago
I second this. If you're making money, you shouldn't be being cheap and using a free service, and if you are, whatever happens is your own damn fault. Set up a server of your own, or pay for a service. Other than that, shut up. I wouldn't consider you a graphics designer if you use ImageShack still, more like a wanna-be artist/cheap-ass half-ass part time drawer. You have a hobby, not a career.
Black Sheep
· 5 months ago
If your stuff waz THAT important, youd upload it to your COMPUTER itself, not just a website. I personally have a computer thatz unplugged from the rest of the world, except itz power. I uze that to hold all of my filez and such, and cary an 8Gb flash drive in case I need to transfer
screwThat
· 5 months ago
well fuck head why whould we be inconvenienced so you morons can issue your shitty campaign which I am now 100% against because of this act.
Frostbite
· 5 months ago
belolats, you seem to be reloading the page and resending the data from your previous post. Just go back to the original URL by removing the crap at the end in the bar and pressing enter.
LifetoAntiSec
· 5 months ago
That's not pathetic, they got a good point there. Websites that release 0days exploits are supported by script kids that use the programs to take advantage and to cause damages on other users or servers. More exploits = more malwares being spreading on the world = more money to anti-malwares companies.
Robson Cotter
· 5 months ago
I agree with LifetoAntiSec, publishing exploits to the public is very bad because much more computers will be affected than if the exploit was kept private. And the security companies are the ones behind of this issue of course.
Hannah B
· 5 months ago
Oh no! Not more money to companies that protect people from viruses and spyware! That would be just terrible *sarcasm*
Mike Chelen
· 5 months ago
presumably "more malwares being spreading on the world" is the bad part
LifetoAntiSec
· 5 months ago
Haven't you noticed that who create and publish the malwares are the anti-malware companies themselves? Probably you're just a normal user that do nothing about computer security. So STFU and don't reply me anymore.
Bios Element
· 5 months ago
So searching for ways in before the black-hats find them is a bad thing? Right...I see. Such a mature attitude you have. So STFU and don't reply to me because you don't agree with me! ;)
I_Support_Anti-Sec
· 5 months ago
No, finding those ways, then TELLING the black hats about them, and SELLING the fucking fix, is a bad thing. Get educated before replying, about full disclosure. And STFU? That's mature. Either way, this HAPPENED because of this very precedent. White Hats finding the problems, saying, "HEY EVERYONE THIS RIGHT HERE THIS VERY EXACT WAY I AM POSTING RIGHT HERE THIS CODE RIGHT HERE IS BAD IF RUN. IT IS AN EXPLOIT AND IS NOT FIXED. DO NOT USE IT!", and then selling the fix for said exploit. It's like me placing a nuke somewhere, then going over to the terrorists, and setting down a button in front of them, pointing to it, and saying, "This button right here detonates a nuke that will kill millions and be generally extremely bad to those you hate. DO NOT PRESS IT.", maybe putting a sticker next to the button that says, "Do Not Press", and then trying to go and sell the people at where the nuke would hit, a defusing kit/defense system. Kinda generating a market that would be otherwise less necessary. So grow up.
Maddy
· 5 months ago
I'm a moderator at a Supernatural website and our images are all screwed up. What is wrong with people that they have to do stupid things like this???
tek9
· 5 months ago
wow, I just had one of their forum sig banners on my profile for a social networking site I use regularly, and it just quadrupled my profiles page size.... wtf? I honestly don't even know what this is about....
Chaosrex
· 5 months ago
Those idiots completly messed up my images!!!Oo
More then 6 of my pics where hacked by this shit.
Damn i'm french and i'm good at english but i don't see the point of there hacks and don't get where they will go with it!
Security blog?,exploite publication website?
Screw you,my pics where only pics of my Wh40k mini's!! there's nothing to do with all there crap!!
If those guys want that bad to send a message to those who make those sorta things hack there images!!,not those of people who as nothing to do with it!
Bande d'enculeurs de mouches a merde...-_-
Ren'G
· 5 months ago
hhahaha tu m'as tué avec ta dernière phrase, tout à fait d'accord avec ce que tu as dis. ;)
toni
· 5 months ago
I wasn't even on imageshack when this message came up on my screen - is my computer safe? It may be totally unrelated but I found that someone hacked into my twitter. I found a tweet that I didn't tweet that had a link in it. I didn't click on the link I just deleted the tweet and made other changes to opefully mean it wont happen again.
Dee
· 5 months ago
Gay kids should find better things to do with their time.
Timmy
· 5 months ago
This should be a great reminder to people to GET THEIR OWN HOST, instead of using photobucket, imageshack, tinypic, and whatever other image hosting site is out there.
Much like the Anonymous group [well, mostly] Anti-Sec has good intentions.. just a bad way of going about it. They've got my semi-support. As in, hey if you succeed awesome!
Mike Chelen
· 5 months ago
any site has a chance of being exploited, in fact usually services like Imageshack are more secure than servers that people administer themselves, which is why this is so surprising
Rick
· 5 months ago
Figures you would support these losers, as you obviously have the look down. I bet most of these whackers look just like you, stupid virgin4life.
"Much like the Anonymous group [well, mostly] Anti-Sec has good intentions..blah blah blah" Wow, you're awesome. Get bent, dweeb.
Ian
· 5 months ago
I agree with Timmy
Rick, you should read this..........http://tinyurl.com/bqqrvx
Rick
· 5 months ago
Sorry, I don't follow tinyurl. Try again...
just kidding, i don't care.
Timmy
· 5 months ago
Ahhh faceless trolling.
But yes, I am, in fact, awesome.
Ian owns.
Rick
· 5 months ago
Everything to you on the internet revolve around "4chan"?
Tim Young, lame myspace page. 4chan pedolover. Wow, that was hard.
I see losers like you around campus talking about your 4gay site, everytime.
Timmy
· 5 months ago
I did love Michael Jackson. RIP.
Dennison Uy
· 5 months ago
Can't wait to see more of this anti-SEX movement. I guess that's why they have a hard time getting some.
famous logos
· 5 months ago
its working fine with me here now :S I cant see any black message
Av
· 5 months ago
it's really annoying
Mike Chelen
· 5 months ago
The whole Imageshack site was hacked, it's not directed at any specific users.
Hopefully the mention of "no images were harmed" means that the file were not actually deleted, and Imageshack will be able to restore the original pictures soon.
Sabre
· 5 months ago
If they were trying to garner support for their cause, I believe they failed.
Brian Edwards
· 5 months ago
I agree. I think that they pissed more people off than anything else. Most of one of the forums that I help manage uses mostly imageshack. It's not cool when you log in to multiple comments of this @#$%. Man.... Find another way to do this guys...
px
· 4 months ago
They were not trying to "garner support for their cause". They were letting people like you know that you are the cattle of the internet, and you are about to be sent to bovine university.
*HISTORY LESSON* Infosec is primarily dominated by whitehat researchers that work for free, exposing the vulnerabilities of the internet for a few moments of fame and fun. Antisec is not advocating responsible disclosure, antisec is saying they will no longer tell the public about bugs for free, and rather, they are going to use what they know to take control of the internet, and do wtf they feel like.
These are not your friendly neighborhood hackers, these are the hackers on steroids that fox news tried to warn you about. Think of antisec as an Ayn Rand inspired hacker religion.
Cj
· 5 months ago
what these guys posted is a load of BULL SHIT.
Pretty much what they're saying is that they want to destroy security companies like Nortan Anti-Virus and McAffe so that we have absolutely no protection on our computers. Obviously, they have their own hacker that got into imageshack. Pretty much they want it easier to hack into other computers. Of course, this happens on the eve that our federal government getting hacked, along with South Korea, with intelligence officials pointing to North Korea, and ultimately China as the perpetrators, when you look at the big picture.
Basically, they are trying to label the security companies as bad guys, but if you really look at them, they're the ones that look really, really suspicious.
ZilBl4k
· 5 months ago
his crazy!!!!
BMF
· 5 months ago
Damn thing...this has borked up some of the rank images on my website, none of my other hosted pics show any signs of tampering as of yet. BTW...all Anti-Sec have managed to do is piss folks off...not garner any supporters.
iddaa
· 5 months ago
i can't see my images in my website. it's too bad.
Relli Kreggin
· 5 months ago
Whatever support these clowns might have had, they lost in the spamming of these idiotic and self-contradictory "manifesto".
GG you tools.
laguna
· 5 months ago
incredible. 100% support for this
Gregor
· 5 months ago
"these guys from the Anti Sec Movement should seriously get laid VERY soon" You want these idiots to procreate?
Kathi
· 5 months ago
Thank you for making me laugh even though I am seriously annoyed...
boogs
· 5 months ago
Those fags are really STUPID!!Thier group should now DIE!!
imageshackhacked
· 5 months ago
it seems that they have removed some of the black images with message( of hackers ). Waiting to see if they would able to restore it. hopefully they will
Jed Cohen
· 5 months ago
Did ImageShack roll back their website to an earlier version in order to fix this? I noticed that their last blog entry is from October 24, 2008. Have to admit that I don't really interact with ImageShack, but I find it hard to believe that they a) haven't updated since then and b) haven't responded to the hacking. I imagine that the users would very much like the admins to reassure them that their files haven't been lost (if what I'm reading in the comments is any indication).
kyle
· 5 months ago
they have released imageshack and all images are back up
testify
· 5 months ago
Green pixel above the A scares me.
JLenard
· 5 months ago
Hahah, this is so pathetic. Full disclosure is a GOOD thing. If there was no full disclosure, there would be no motivation to fix the exploit.
tpp
· 5 months ago
A lot of the image servers at imageshack aren't responding at all right now.
Kathi
· 5 months ago
Bastards. My MySpace page is a mess of broken-image icons, and a lot of recently posted stuff in my ImageShack account is just blank. That's not normal. Usually, in place of a missing image, I'll see a "no thumbnail available" warning that I'm being punished for being a bandwidth pig or whatever. But this looks like an attack, all right. I'm guessing ImageShack has gotten as far as suppressing the Anti-sec messages somehow but hasn't managed to get users' content back up?
kill em all
· 5 months ago
kkk
Kairel
· 5 months ago
Mi foro también fue afectado pero ya se está normalizando, solo una sección continúa con el problema.
My university blog that has images on there hosted by ImageShack has been laced with this LOVELY manifesto. I was getting ready to complain to ImageShack about it, but seeing as they've been hacked, I guess there's no point in complaining?
testify
· 5 months ago
Nope nothing to do really but wait it out and see what happens.
imageshackhacked
· 5 months ago
looks like some of the images has been restored. please let us know too if some of you have found so too
aikanae
· 5 months ago
Poor publicity at it's finest. Someone needs to put these kids to work. Here's an interesting article about Anti-sec movement with links to "their manifesto" (which makes no sense to me or how this latest adventure relates). http://blog.ncircle.com/archives/2006/04/the_an...
they messed with my sig. when i find them i will fucking hang them david carradine style.
Supah
· 5 months ago
Actually, it's not so much that the pictures where removed - these people just used a redirect exploit. All images are 200% safe. And too people saying that it's working in the pictures they uploaded - that's because the picture is still in your temporary internet files...
Kevin Katovic
· 5 months ago
Yeah they do this once and a while to attempt a " Buzz " its too bad no one else has the same oppurtunity for lies to gain web traffic
tehol
· 5 months ago
I lost an image of mine. Only one, mind you, and it was just recently added.
gabbyblog
· 5 months ago
I found someone upload the tutorial how imageshack able to be hacked in youtube, very interesting technique, take a look before the youtube banning this video.
yeah my shits screwed!! I was checking some images I loaded on to a forum and wow...here is this stupid shit all over the place.
Sebastian Baliantz
· 5 months ago
LAWLYZ ANTI SEC SOUNDS LIKE A BUNCH OF RAGING FAGS LMFAO
Sebastian Baliantz
· 5 months ago
LAWLYZ ANTI SEC SOUNDS LIKE A BUNCH OF RAGING FAGS LMFAO
Sebastian Baliantz
· 5 months ago
LAWLYZ ANTI SEC SOUNDS LIKE A BUNCH OF RAGING FAGS LMFAO why hack a picture site? maybe because they aren't hackers THEY ARE LAMERS LMFAO (API HOOK=EAT SHIT HAHAHAAA FAGS)
Dank
· 5 months ago
This is great
Dank
· 5 months ago
Stop using a free service to host your shit and run a real site you idiots.
These guys are doing you a service....eventually you will agree
That's who this group should have attacked if they were serious.
AcidRain
· 5 months ago
actually this whole thing is what the world needs. it was clear. and it was concise. u bitches wont do shit. cause you cant. they will do what they say they will. and there is no stopping them. only thing anyone can do is just give in. quit being a profiteering glutton. this makes me sick. GO ANTI-SEC!
Looks like Photobucket, Flickr, and other hosting sites will be getting some more users.
Wonder how long this is gonna keep up.
Kathi
· 5 months ago
Apples and oranges, DRM. Photobucket and especially Flickr do NOT provide the same functionality and convenience that ImageShack does. I really hope ImageShack is able to develop armor against this without crippling itself financially.
Melayu Boleh
· 5 months ago
I see that imageshack has recovered now..
zedomax
· 5 months ago
Hackers attacked my blogs too, I think they are infecting websites first so they can infect thousands of users, websites are not their target, they are just trying to "use" the websites, sorta like a parasite. Disgusting acts, I had to do some retali-hacking.
goldentrigun
· 5 months ago
people are dumb. it's actually a very smart idea. they're basically terrorists. and thats the easiest way to spread mass propaganda across the net. it also creates more fear and makes them seem much bigger then they really are since the images were posted everywhere.
why hack millions of websites. could take months to spread that much by hacking a site one by one.
JustNormal
· 5 months ago
How do they they expect us to support a hacker?
zedomax
· 5 months ago
Hackers attacked my blogs too, I think they are infecting websites first so they can infect thousands of users, websites are not their target, they are just trying to "use" the websites, sorta like a parasite. Disgusting acts, I had to do some retali-hacking. But funny, that didn't harm no one? I hope not, not Adsense revenues!!!
goldentrigun
· 5 months ago
people are dumb. it's actually a very smart idea. they're basically terrorists. and thats the easiest way to spread mass propaganda across the net. it also creates more fear and makes them seem much bigger then they really are since the images were posted everywhere.
why hack millions of websites. could take months to spread that much by hacking a site one by one.
The Ikonic One
· 5 months ago
I am just amazed at all the geeks exploits, cracks, hacks and infritration. Just so incredible. I wish I could be that talented
Well, at least the images arent lost. And my account seem to be rid of that anti sec message thing.
confused
· 5 months ago
How did hacking into a website and causing thousands of people problems support their want for No firewalls and security? If these "seemingly good intention" people felt the desire to hack into and temporarily destroy a site then, why should we think that without the security was buy that nasty people won't do similar and worse things as well without anything there to stop them? If these people took away my images from this short time, then without security whats to stop anyone who is bored to do it again permanently, or do worse such as break into my bank account. and don't say that's a scare tactic, people people steal money and valuables from peoples houses. We call them robbers, so where the giant leap from that to people using the internet to do the same?
When they say no images were harmed they lied. My sister last many images on image shack.I hope they go to jail.
Kathi
· 5 months ago
Tell sis not to despair yet. My images are reappearing, slowly. If she's actually been relying on a site like ImageShack for storage (or even backup), this episode, in the end, will just be a little scare that cures her of that habit. ImageShack is a fantastic free resource but it's no substitute for protecting precious personal images, and it shouldn't be expected to serve that purpose.
Andrew
· 5 months ago
A lot of my images were replaced but now they are all back and working fine.
Raichle
· 5 months ago
Can someone explain this in English?
cindy--rox
· 5 months ago
This was absolutely horrible! At the forum I work at, almost all our images for our skin was hosted by Imageshack. When it happened it that stupid poster stretched our our page and was so annoying. We had to re-up ASAP but it still messed up our skin for a few hours. I don't even understand what the point of hacking Imageshack does.
Kathi
· 5 months ago
One word, Cindy: Attention.
archaznable
· 5 months ago
fuck with the anti-sec movement who cares about them and leave our images alone OKAY ....
Khai
· 5 months ago
now... i hate Imageshack at all!!
MeiYah
· 5 months ago
I've experienced that too early this morning... Glad my images are still there...
They certainly hacked to right site to spread their stupid message.
Chris
· 5 months ago
What a bunch(?) of morons. Bitch about how security firms use fear to force us to buy their crap by what method??? Hacking an image repository? Surely the end result is that Imageshack will now be forced to spend undisclosed amounts to these security firms or go out of existence. If you really want to change the world and put security vendors out of business then start patching the loopholes for their clients and add your own tag if you really feel the need. This however does nothing except prove that full disclosure is good and those who offer fixes (whever vendors or third parties) deserve to be financially rewarded for doing so.
flow_hoe
· 5 months ago
I'm not losing any sleep over this...
aawindoze2
· 5 months ago
Wow, that is way cool. those hackers are something else arent they!
IT'S NOT FUCKING FUNNY... shotgun: site was hacked last night and it was from someone who wants do hack every social site... All of my my space images we're this black letter with whit wording on it with a threat and the name of the people who did it... Does anyone know if we are going to be able to get back all of out images...???
Fugu23
· 5 months ago
There's bigger corporate 'schemes' these guys could be tackling. Why not take down the entire capitalist system? I mean, cancer could be prevented from occurring in the first place, but companies decide to sell treatment methods afterwords, because then they make more money.
Same deal, but with a real problem. I don't give a damn about thirty bucks for an AV! Go do something useful!
Fugu23
· 5 months ago
There's bigger corporate 'schemes' these guys could be tackling. Why not take down the entire capitalist system? I mean, cancer could be prevented from occurring in the first place, but companies decide to sell treatment methods afterwords, because then they make more money.
Same deal, but with a real problem. I don't give a damn about thirty bucks for an AV! Go do something useful!
if you don't like what someone says you don't need to call them a retard.
Dave
· 5 months ago
I guess visually impaired security professionals are not a target audience for this message?
The whole thing comes across as a very childish one-dimensional approach. "We decided we don't like this, so we're going to destroy things." If you actually had a convincing case, you could present that case to the security industry and win over a first wave of support without digital violence. Then, if you later decided that digital violence was the only answer, you would have support.
As is, it's an illogical whinefest, ironically appropriate since the attack on imageshack effectively targeted teenagers' video game message boards.
bgnin
· 5 months ago
if this is for real I dont mind..they are not wrong
people are generally stupid. i don't think it's some empty threat to tell you the truth. my friends and i actually found their website and they make multiple claims to have done other things before.
and as for hacking a image hosting website being labeled as dumb... you're wrong. it is a quick and easy way to get propaganda and spread fear... to some you may not see it as fear. but in reality it makes them seem very larger then they really are. and thats the point to cyberterrorism am i not right? make it seem that no one is safe...
Pissed Off
· 5 months ago
Hey douchbags, I am unable to get some vital information I need because of you crap. Get a life, and don't punish the innocent with your shit!!
goldentrigun
· 5 months ago
flaming doesn't help either...
Kathi
· 5 months ago
My images are coming back, a few at a time. So it looks like this will be ultimately a harmless, if inexcusable, prank in terms of its impact on ImageShack's users. For the host, perhaps not so harmless, sad to say.
prashant
· 5 months ago
even my blog is being effectd!! nd i even dont kno which image in my blog is fm imageshack!!
TurboBorland
· 5 months ago
So what? We've known about these exploits in several simple image hosting sites like these for around a year, if not longer. The only thing they're good at is reading the appropriate forums that actually outlined an attack like this. Anti-sec has shown absolutely NOTHING skillful here.
regina
· 5 months ago
Why not promote delayed full disclosure. Disclose the full details once the patches are released and people have had enough time to patch their systems.
If you blackout disclosure, you end up having a situation where people (network admins, etc) are oblivious to the exploit and take no preventative measures at all.
Regardless of whether it's fully disclosed or not, the information is bound to make it through underground hacker networks (such as yourself, Anti-Sec) and these guys are not all noble out there and they're gonna have blast going out and hitting vulnerable systems while the network admins are caught unaware.
anon
· 5 months ago
hahaha... you're a funny little brat!
samirbenabid
· 5 months ago
What they are saying makes no sens. An undisclosed exploit is more likely to be more fatal than a public one. Users won't be aware of the exploit and there will be no patchs for a long time.
I think of script kiddies as a feedback loop to the security community and developers (especially OSS developers). Without them, any exploit would be a lethal weapon in the hands of cyber criminals.
Those guys are trying to protect their source of income, nothing more.
WaskoDS
· 5 months ago
What, does that mean all Bugzillas are going to get hacked, too?
D.
· 5 months ago
fucking hackers are retarded. find something better to do with your damn time like watching internet porn.
CBlues
· 5 months ago
So, um, did they at least NOT reveal what they did to hack ImageShack?
Martin E
· 4 months ago
Too funny - ppl saying, "Microsoft is too hard to hack", and "these hackers are noobies" - come one. If you don't know a THING about TRU h@xing -then simply don't post. These guys are hackers, and did a fundamental job on a fundamental platform.
DON'T B A HATER!
Martin E
· 4 months ago
Too funny - ppl saying, "Microsoft is too hard to hack", and "these hackers are noobies" - come one. If you don't know a THING about TRU h@xing -then simply don't post. These guys are hackers, and did a fundamental job on a fundamental platform.
DON'T B A HATER!
Martin E
· 4 months ago
Comments from, "these aren't hackers" to "if your so good, try hacking Microsoft!" - OMG!!!!! Are you commentators using Windows 98 (or Vista lovers?) - If you don't know, then don't comment. If you are not a hacker, then -please - dONT DON'T BE A HATER!
blick
· 4 months ago
hell's mother fucking yeah....
minanube
· 4 months ago
hahahah.....
amazing having fun out there :P
jack
· 4 months ago
Hey all, sorry about the delay in posting an update about this. We will be posting more details in our blog (at http://imageshack.us). Hackers were able to exploit one of our servers to gain control of how images are being served, which was detected almost within a minute. It took about an hour to restore normal functionality to user images, and none of the user images were lost of deleted due to this attack. Only a fraction of the servers were affected, so we were able to isolate them and remove the hack very quickly. ImageShack team has been working none stop this weekend, doing security audits and hardening our systems, so something like this never happens again. ImageShack has been hosting your images since 2003, has never had an outage or been hacked similar to this incident. Please be assured that security of your images and videos is our top priority, and we are doing everything what can be possibly done to keep your hosting media secure.
Best, -Jack Levin CEO, ImageShack Corp.
Diamondstar
· 4 months ago
It is quite a shame that image shack was hacked. Why, what's the point, good golly.......it's just image shack. I think hackers should aim a little higher, & work on some higher hanging fruit, ie NSA ( National Security Agency), or the IRS, FBI.......really shoot for the big stuff. Want to complain about full disclosure, hack the aforementioned........image shack ........please.....
Diamondstar
· 4 months ago
It is quite a shame that image shack was hacked. Why, what's the point, good golly.......it's just image shack. I think hackers should aim a little higher, & work on some higher hanging fruit, ie NSA ( National Security Agency), or the IRS, FBI.......really shoot for the big stuff. Want to complain about full disclosure, hack the aforementioned........image shack ........please.....
tardiman
· 4 months ago
Brillerz.
Manda
· 4 months ago
You people are stupid- the point of hacking the site was to get the message out, not show of how skilled they are. The thing you should be criticizing is the MESSAGE. It doesn't make sense- you want to find a problem with a program and not tell people about it? What if the company who has the problem doesn't want to fix it? Informing the public is the proper thing to do- it's not the best option, but at least it's not saying do nothing.
Crystal
· 4 months ago
I guess the problem is that while it's a nice little piece of hacking code, it doesn't really make the point. Almost everyone I know who isn't a security guru (and therefore already lives and breathes their own opinion on the matter) had to go and look up the word 'exploits' before actually understanding anything about the message at all. And when they do, their reaction is unfailingly something like "Stupid PETA-wannabe group!" or something similar. I really haven't met anyone who's been won over by this.
In fact, I think the main reaction I've seen so far is something like "Right. -You- think this. You hacked some poor innocent corporation to say so. And your point is...?"
I don't really agree or disagree with their motives; but they don't really come off very well, public relations wise. I mean yeah, it was publicity... but it was the sort of publicity you get standing trial for a mass murder.
kajdhas
· 4 months ago
A lot of these comments are just a sad reminder if how our education system has failed us.
dave
· 4 months ago
:o
Lol
· 4 months ago
The internet is a series of tubes.
ITS SRS BZNSS!
G A M T
· 4 months ago
do not subscribe
Tisiphone
· 4 months ago
Regrettably, there's no good way to separate security researchers from script-kiddies on 'full disclosure' sites. Yes, it does lead to more people using the exploits, but this should occur after a competent user has patched their software in -most- cases. And companies -do- often place delays between releasing vulnerability data to their corporate customers or security vendors, and releasing them to the public.
Contrary to their understanding, people who write malware are often -exceedingly- intelligent. Botnets are a highly lucrative enterprise with deep ties to the criminal underground. These peoples' argument is akin to calling for weapon control in a militant zone because the radicals there "won't find a way to get a gun."
I understand their frustration, but this is simply irrational (plus a completely illegal outlet). There next to no way to identify exploits in IDS or antivirus without exploit code and knowledge of its activity.
fred
· 4 months ago
[Full-disclosure] anti-sec: OpenSSH <= 5.2 zero day exploit code - 48 hours until it is publicly released! Ant-Sec Movement anti.sec.movement at gmail.com Mon Jul 20 07:32:18 BST 2009
* Previous message: [Full-disclosure] [ MDVSA-2009:157 ] perl-Compress-Raw-Zlib * Next message: [Full-disclosure] anti-sec: OpenSSH <= 5.2 zero day exploit code - 48 hours until it is publicly released! * Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Dear Reader, In 48 hours, the anti-sec movement will publicly unveil working exploit code and full details for the zero-day OpenSSH vulnerability we discovered. It will be posted to the Full-Disclosure security list.
Soon, the very foundations of Information Technology and Information Security will be unearthed as millions upon million of systems running ANY version of OpenSSH are compromised by wave after wave of script-kiddie and malicious hacker.
Within 10 hours of the initial release of the OpenSSH 0-day exploit code, anti-sec will be unleashing powerful computer worm source code with the ability to auotmatically find and compromise systems running any and all versions of OpenSSH.
This is an attack against all White Hat Hackers who think that running a Penetration Test simply searching for known vulnerabilities is all they have to do in order to receive their payment. Anti-sec will savor the moment when White Hat Hackers are made to look like fools in the eyes of their clients.
Sincerely,
-anti-sec
Name
· 3 months ago
What a twatt lolz Anti-Sec my arse if they go to far they will get pwned by by so much more than they think...
All Comments
hack microsoft, what kind've retarded statement is that..
if it was so simple why don't you just explain it for us
"They may seem cool, but they did something very simple"
You can either mean this two ways;
- Technically it's simple. If you mean this, it's just retarded, a zero day exploit for SSH isn't just something you come by every day, or happen to figure out after a bit of a browse through Milw0rm
- As a statement it's simple. If you mean this, what were you expecting? A flash movie? It's an image hosting site, they're not looking to cause damage or bring it down.
As for hacking microsoft, as I said, retarded statement. It's been done, numerous times. The amount of zero-day exploits for Microsoft products ranges in the hundreds, most are patched now. But every Microsoft OS has had a zero-day exploit. This is the first OpenSSH zero-day I've heard of.
You don't even probably understand what these guys have done (not that I'm advocating it), this isn't just a website defacement. They gained COMPLETE control of their systems. They could've uploaded viruses and all sorts of shit.
They engineered it so that everyone's image was replaced with the image you see on the blog. I doubht that was anywhere near "simple" considering they did it all through an ssh terminal commands.
I'm sorry but don't pretend to know what you're talking about when you don't. And especially don't make retard statements like "hurr it's only imageshack, go HAX micro$oft, much harder guise".
"If they wanted to make a statement, try something that's actually hard and not something that's just big and [[SIMPLE]. "
You contradicted yourself you know?
You sound like hacking imageshack was easy.. "go hack some other bigshot company" Yeah like imageshack isn't some big company that millions goto?
Mass kira? Shoot you don't deserve my reply. Comparing a hack to an anime.. hahaha.
Ignorance is pouring from your comment.
To get to the htacess file you need to get access to the server.
So unless you think getting access to a server is easy.. well yeah it's simple.
secondly.. I'm sure you didn't understand the message this group has sent to the web.
Bah.. the message wasn't for you anyway..
Yeah it took skill on their part to do, but seriously wtf are they trying to accomplish? so they are a bunch of smart people that are bored, why not do something to benefit others, instead of drawing attention to themselves for fun... yeah, that was a smart move geniuses.
You can't justify this action, people that have nothing to do with their cause were affected, that only puts people at opposition to your cause, and I'm not one to sit back and not say shit just because the other people are too scared to.
Unless it was something terrible that your avatar was replaced for a day.
"attention to themselves for fun"
What we don't even know the anti-sec group.. How could that bring attention to them..
It's not like they have a myspace and everyone is adding them.. the only attention they wanted was to show their message.
But I guess they weren't thinking people would pay attention only to the part that said anti-sec.
However, an "anti-sec" movement that threatens "ownage" of security sites is a paradox that solves nothing. Instead of attacking avenues of security information, it is more reasonable to educate about the dangers of full disclosure. Then, if you are a radical organization and sites refuse to comply, they invite their own fate.
If an exploit is not released (AKA full-disclosure), then only a few people have this information - and what are the chances they'll use it to you. Not so great.
You don't realize it, but you've just made a solid case for the anti-security movement. :)
Do some interwebs research on the subject to discover what I mean: network routing devices, ATM devices, electronic voting machines, and the ever present apps, then make up your own mind based on the facts, not on an emotional response.
Regards
Nearly every forum alone will have members using imageshack.
That's why, you fail.
Read King Joe's comment and you'll see how retarded you are.
Check out http://www.earncashfromgoogle.com if you want yo earn money online from google!
Educate yourself about full disclosure.
You are assuming that all of the hackers will secretly distribute the exploit somehow without anyone finding out. That is highly in the internet age. I would rather have the exploit revealed to the vendor and possibly partial disclosure of the vulnerability to the extent that the end user can possibly temporarily disable the vulnerable feature until a patch is released without giving details to other unaffiliated hackers groups.
Security through obscurity never works.
Nothing worse than sitting on a page waiting for it to load and seeing the browser is held up because it's waiting for some 3rd party domain to respond.
My account has a number of their stupid manifesto images.
EPHIC PHAIL!
I still don't fully understand what Anti-Sec is =\ care to explain?
Unless we've fixed it already, Italic Forums will show you a great example of how much damage this little hack has done. What a pain in the ass.
GRR
Hope it back soon.
More exploits = more malwares being spreading on the world = more money to anti-malwares companies.
More then 6 of my pics where hacked by this shit.
Damn i'm french and i'm good at english but i don't see the point of there hacks and don't get where they will go with it!
Security blog?,exploite publication website?
Screw you,my pics where only pics of my Wh40k mini's!! there's nothing to do with all there crap!!
If those guys want that bad to send a message to those who make those sorta things hack there images!!,not those of people who as nothing to do with it!
Bande d'enculeurs de mouches a merde...-_-
Much like the Anonymous group [well, mostly] Anti-Sec has good intentions.. just a bad way of going about it. They've got my semi-support. As in, hey if you succeed awesome!
"Much like the Anonymous group [well, mostly] Anti-Sec has good intentions..blah blah blah" Wow, you're awesome. Get bent, dweeb.
Rick, you should read this..........http://tinyurl.com/bqqrvx
just kidding, i don't care.
But yes, I am, in fact, awesome.
Ian owns.
Tim Young, lame myspace page. 4chan pedolover.
Wow, that was hard.
I see losers like you around campus talking about your 4gay site, everytime.
Hopefully the mention of "no images were harmed" means that the file were not actually deleted, and Imageshack will be able to restore the original pictures soon.
*HISTORY LESSON* Infosec is primarily dominated by whitehat researchers that work for free, exposing the vulnerabilities of the internet for a few moments of fame and fun. Antisec is not advocating responsible disclosure, antisec is saying they will no longer tell the public about bugs for free, and rather, they are going to use what they know to take control of the internet, and do wtf they feel like.
These are not your friendly neighborhood hackers, these are the hackers on steroids that fox news tried to warn you about. Think of antisec as an Ayn Rand inspired hacker religion.
Pretty much what they're saying is that they want to destroy security companies like Nortan Anti-Virus and McAffe so that we have absolutely no protection on our computers. Obviously, they have their own hacker that got into imageshack. Pretty much they want it easier to hack into other computers. Of course, this happens on the eve that our federal government getting hacked, along with South Korea, with intelligence officials pointing to North Korea, and ultimately China as the perpetrators, when you look at the big picture.
Basically, they are trying to label the security companies as bad guys, but if you really look at them, they're the ones that look really, really suspicious.
BTW...all Anti-Sec have managed to do is piss folks off...not garner any supporters.
GG you tools.
You want these idiots to procreate?
saludos.
My forum was afected but now is working better.
http://charlemos.foros.ws
Regards from Lima perú.
Here's an interesting article about Anti-sec movement with links to "their manifesto" (which makes no sense to me or how this latest adventure relates).
http://blog.ncircle.com/archives/2006/04/the_an...
http://charlemos.foros.ws
Saludos desde Lima Perú
Full Disclosure forces software vendors to create updates to their flawed packages.
Full Disclosure forces software vendors to be more security conscious.
Without Full Disclosure we have a false sense of security.
Without Full Disclosure, exploits will be in the hands of a few. It's like a master key.
Think about "Bump Keys" - The vulnerability was known for ages by people in the know (and not all were trustworthy).
Is it better to live in ignorance?
If something is wrong on my system, I want to know NOW - not weeks or months down the road.
Security by Obscurity has been the motto for so many vendors for too long.
Eradicate Full Disclosure, I think not.
Full Disclosure forces software vendors to create updates to their flawed packages.
Full Disclosure forces software vendors to be more security conscious.
Without Full Disclosure we have a false sense of security.
Without Full Disclosure, exploits will be in the hands of a few. It's like a master key.
Think about "Bump Keys" - The vulnerability was known for ages by people in the know (and not all were trustworthy).
Is it better to live in ignorance?
If something is wrong on my system, I want to know NOW - not weeks or months down the road.
Security by Obscurity has been the motto for so many vendors for too long.
Eradicate Full Disclosure, I think not.
thanks for the wall of text, douchebags
http://tinyurl.com/lhddc5
http://www.spyimplants.webs.com
I will get it fixed soon and I may have to forgo use of imageshack...
www.internetcliche.com
_____________________________________________________________________
http://www.spyimplants.webs.com
http://www.youtube.com/watch?v=Y9iflb0TM6M
These guys are doing you a service....eventually you will agree
That will explain HOW THEY HACKED SERIOUSLY NO LIE IM SCARED ATM THIS IS INTERNET CHAOS
http://tinyurl.com/HackedOmg
only thing anyone can do is just give in.
quit being a profiteering glutton. this makes me sick. GO ANTI-SEC!
http://taszara.com/imageshack-hacked-by-anti-se...
http://taszara.com/imageshack-hacked-by-anti-se...
Wonder how long this is gonna keep up.
why hack millions of websites. could take months to spread that much by hacking a site one by one.
why hack millions of websites. could take months to spread that much by hacking a site one by one.
www.twitter.com/thecrypticone
www.twitter.com/thecrypticone
www.twitter.com/thecrypticone
www.twitter.com/thecrypticone
If these people took away my images from this short time, then without security whats to stop anyone who is bored to do it again permanently, or do worse such as break into my bank account. and don't say that's a scare tactic, people people steal money and valuables from peoples houses. We call them robbers, so where the giant leap from that to people using the internet to do the same?
RT
www.anonymize.tk
shotgun: site was hacked last night and it was from someone who wants do hack every social site... All of my my space images
we're this black letter with whit wording on it with a threat and the name of the people who did it... Does anyone know if we are going
to be able to get back all of out images...???
Same deal, but with a real problem. I don't give a damn about thirty bucks for an AV! Go do something useful!
Same deal, but with a real problem. I don't give a damn about thirty bucks for an AV! Go do something useful!
Even i have an article written today.
http://infosyndrome.blogspot.com/2009/07/image-...
just signed in to my blog to get shocked.!!
All my image based links are gone!!
Idiotic anti Sec.
Quickly switched to tiny pic server.
Now my blog is oK.
Dunno when image shack is going to change it.
The whole thing comes across as a very childish one-dimensional approach. "We decided we don't like this, so we're going to destroy things." If you actually had a convincing case, you could present that case to the security industry and win over a first wave of support without digital violence. Then, if you later decided that digital violence was the only answer, you would have support.
As is, it's an illogical whinefest, ironically appropriate since the attack on imageshack effectively targeted teenagers' video game message boards.
Check out http://www.earncashfromgoogle.com if you want yo earn money online from google!
Check out http://www.earncashfromgoogle.com if you want yo earn money online from google!
and as for hacking a image hosting website being labeled as dumb... you're wrong. it is a quick and easy way to get propaganda and spread fear... to some you may not see it as fear. but in reality it makes them seem very larger then they really are. and thats the point to cyberterrorism am i not right? make it seem that no one is safe...
If you blackout disclosure, you end up having a situation where people (network admins, etc) are oblivious to the exploit and take no preventative measures at all.
Regardless of whether it's fully disclosed or not, the information is bound to make it through underground hacker networks (such as yourself, Anti-Sec) and these guys are not all noble out there and they're gonna have blast going out and hitting vulnerable systems while the network admins are caught unaware.
I think of script kiddies as a feedback loop to the security community and developers (especially OSS developers). Without them, any exploit would be a lethal weapon in the hands of cyber criminals.
Those guys are trying to protect their source of income, nothing more.
DON'T B A HATER!
DON'T B A HATER!
amazing having fun out there :P
Best,
-Jack Levin
CEO, ImageShack Corp.
In fact, I think the main reaction I've seen so far is something like "Right. -You- think this. You hacked some poor innocent corporation to say so. And your point is...?"
I don't really agree or disagree with their motives; but they don't really come off very well, public relations wise. I mean yeah, it was publicity... but it was the sort of publicity you get standing trial for a mass murder.
ITS SRS BZNSS!
Contrary to their understanding, people who write malware are often -exceedingly- intelligent. Botnets are a highly lucrative enterprise with deep ties to the criminal underground. These peoples' argument is akin to calling for weapon control in a militant zone because the radicals there "won't find a way to get a gun."
I understand their frustration, but this is simply irrational (plus a completely illegal outlet). There next to no way to identify exploits in IDS or antivirus without exploit code and knowledge of its activity.
Ant-Sec Movement anti.sec.movement at gmail.com
Mon Jul 20 07:32:18 BST 2009
* Previous message: [Full-disclosure] [ MDVSA-2009:157 ] perl-Compress-Raw-Zlib
* Next message: [Full-disclosure] anti-sec: OpenSSH <= 5.2 zero day exploit code - 48 hours until it is publicly released!
* Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Dear Reader,
In 48 hours, the anti-sec movement will publicly unveil working exploit code
and full details for the zero-day OpenSSH vulnerability we discovered. It
will be posted to the Full-Disclosure security list.
Soon, the very foundations of Information Technology and Information
Security will be unearthed as millions upon million of systems running ANY
version of OpenSSH are compromised by wave after wave of script-kiddie and
malicious hacker.
Within 10 hours of the initial release of the OpenSSH 0-day exploit code,
anti-sec will be unleashing powerful computer worm source code with the
ability to auotmatically find and compromise systems running any and all
versions of OpenSSH.
This is an attack against all White Hat Hackers who think that running a
Penetration Test simply searching for known vulnerabilities is all they have
to do in order to receive their payment. Anti-sec will savor the moment when
White Hat Hackers are made to look like fools in the eyes of their clients.
Sincerely,
-anti-sec