Mashable - The Social Media Guide - Latest Comments in ImageShack Hacked by Anti-sec Movement

Re: ImageShack Hacked by Anti-sec Movement

imageshuffle — Wed, 26 Aug 2009 07:58:23 -0000

www.ImageShuffle.com is the best for image hosting

Re: ImageShack Hacked by Anti-sec Movement

Name — Wed, 26 Aug 2009 06:08:04 -0000

What a twatt lolz Anti-Sec my arse if they go to far they will get pwned by by so much more than they think...

Re: ImageShack Hacked by Anti-sec Movement

... — Sat, 25 Jul 2009 21:03:35 -0000

Full Disclosure is NOT "Not releasing an exploit... that's 0disclosure... Full disclosure is disclosing the exploit you g00n...

Re: ImageShack Hacked by Anti-sec Movement

fred — Tue, 21 Jul 2009 13:39:47 -0000

[Full-disclosure] anti-sec: OpenSSH <= 5.2 zero day exploit code - 48 hours until it is publicly released!
Ant-Sec Movement anti.sec.movement at gmail.com
Mon Jul 20 07:32:18 BST 2009

* Previous message: [Full-disclosure] [ MDVSA-2009:157 ] perl-Compress-Raw-Zlib
* Next message: [Full-disclosure] anti-sec: OpenSSH <= 5.2 zero day exploit code - 48 hours until it is publicly released!
* Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Dear Reader,
In 48 hours, the anti-sec movement will publicly unveil working exploit code
and full details for the zero-day OpenSSH vulnerability we discovered. It
will be posted to the Full-Disclosure security list.

Soon, the very foundations of Information Technology and Information
Security will be unearthed as millions upon million of systems running ANY
version of OpenSSH are compromised by wave after wave of script-kiddie and
malicious hacker.

Within 10 hours of the initial release of the OpenSSH 0-day exploit code,
anti-sec will be unleashing powerful computer worm source code with the
ability to auotmatically find and compromise systems running any and all
versions of OpenSSH.

This is an attack against all White Hat Hackers who think that running a
Penetration Test simply searching for known vulnerabilities is all they have
to do in order to receive their payment. Anti-sec will savor the moment when
White Hat Hackers are made to look like fools in the eyes of their clients.

Sincerely,

-anti-sec

Re: ImageShack Hacked by Anti-sec Movement

Tisiphone — Thu, 16 Jul 2009 23:17:24 -0000

Regrettably, there's no good way to separate security researchers from script-kiddies on 'full disclosure' sites. Yes, it does lead to more people using the exploits, but this should occur after a competent user has patched their software in -most- cases. And companies -do- often place delays between releasing vulnerability data to their corporate customers or security vendors, and releasing them to the public.

Contrary to their understanding, people who write malware are often -exceedingly- intelligent. Botnets are a highly lucrative enterprise with deep ties to the criminal underground. These peoples' argument is akin to calling for weapon control in a militant zone because the radicals there "won't find a way to get a gun."

I understand their frustration, but this is simply irrational (plus a completely illegal outlet). There next to no way to identify exploits in IDS or antivirus without exploit code and knowledge of its activity.

Re: ImageShack Hacked by Anti-sec Movement

G A M T — Thu, 16 Jul 2009 12:59:14 -0000

do not subscribe

Re: ImageShack Hacked by Anti-sec Movement

px — Thu, 16 Jul 2009 06:25:23 -0000

They were not trying to "garner support for their cause". They were letting people like you know that you are the cattle of the internet, and you are about to be sent to bovine university.

*HISTORY LESSON* Infosec is primarily dominated by whitehat researchers that work for free, exposing the vulnerabilities of the internet for a few moments of fame and fun. Antisec is not advocating responsible disclosure, antisec is saying they will no longer tell the public about bugs for free, and rather, they are going to use what they know to take control of the internet, and do wtf they feel like.

These are not your friendly neighborhood hackers, these are the hackers on steroids that fox news tried to warn you about. Think of antisec as an Ayn Rand inspired hacker religion.

Re: ImageShack Hacked by Anti-sec Movement

Lol — Wed, 15 Jul 2009 20:10:04 -0000

The internet is a series of tubes.

ITS SRS BZNSS!

Re: ImageShack Hacked by Anti-sec Movement

dave — Tue, 14 Jul 2009 23:58:06 -0000

Re: ImageShack Hacked by Anti-sec Movement

kajdhas — Tue, 14 Jul 2009 15:58:58 -0000

Please get off the internet. You are making us all look bad.

Re: ImageShack Hacked by Anti-sec Movement

kajdhas — Tue, 14 Jul 2009 15:57:16 -0000

A lot of these comments are just a sad reminder if how our education system has failed us.

Re: ImageShack Hacked by Anti-sec Movement

G A M T — Tue, 14 Jul 2009 12:29:18 -0000

How about getting access to the server in the first place?
To get to the htacess file you need to get access to the server.
So unless you think getting access to a server is easy.. well yeah it's simple.

Re: ImageShack Hacked by Anti-sec Movement

G A M T — Tue, 14 Jul 2009 12:27:39 -0000

Sebastian, they didn't affect any of your images.. Your images and others were still there after ImageShack got rid of the hack..
Unless it was something terrible that your avatar was replaced for a day.
"attention to themselves for fun"
What we don't even know the anti-sec group.. How could that bring attention to them..
It's not like they have a myspace and everyone is adding them.. the only attention they wanted was to show their message.

But I guess they weren't thinking people would pay attention only to the part that said anti-sec.

Re: ImageShack Hacked by Anti-sec Movement

Crystal — Tue, 14 Jul 2009 01:14:45 -0000

I guess the problem is that while it's a nice little piece of hacking code, it doesn't really make the point. Almost everyone I know who isn't a security guru (and therefore already lives and breathes their own opinion on the matter) had to go and look up the word 'exploits' before actually understanding anything about the message at all. And when they do, their reaction is unfailingly something like "Stupid PETA-wannabe group!" or something similar. I really haven't met anyone who's been won over by this.

In fact, I think the main reaction I've seen so far is something like "Right. -You- think this. You hacked some poor innocent corporation to say so. And your point is...?"

I don't really agree or disagree with their motives; but they don't really come off very well, public relations wise. I mean yeah, it was publicity... but it was the sort of publicity you get standing trial for a mass murder.

Re: ImageShack Hacked by Anti-sec Movement

Manda — Tue, 14 Jul 2009 00:33:10 -0000

You people are stupid- the point of hacking the site was to get the message out, not show of how skilled they are. The thing you should be criticizing is the MESSAGE. It doesn't make sense- you want to find a problem with a program and not tell people about it? What if the company who has the problem doesn't want to fix it? Informing the public is the proper thing to do- it's not the best option, but at least it's not saying do nothing.

Re: ImageShack Hacked by Anti-sec Movement

Sebastian Baliantz — Mon, 13 Jul 2009 19:54:31 -0000

of course I understood what they are about but they broke rule #1 of ethical hacking, DO NOT HACK INNOCENTS. the fuck kind of idiot thinks Imageshack has anything to do with firewalls or PC security.

Yeah it took skill on their part to do, but seriously wtf are they trying to accomplish? so they are a bunch of smart people that are bored, why not do something to benefit others, instead of drawing attention to themselves for fun... yeah, that was a smart move geniuses.

You can't justify this action, people that have nothing to do with their cause were affected, that only puts people at opposition to your cause, and I'm not one to sit back and not say shit just because the other people are too scared to.

Re: ImageShack Hacked by Anti-sec Movement

tardiman — Mon, 13 Jul 2009 16:36:54 -0000

Brillerz.

Re: ImageShack Hacked by Anti-sec Movement

Sebastian Baliantz — Mon, 13 Jul 2009 13:50:30 -0000

uh oh another anti-sec groupie nerd is angry LMFAO HOW GAY

Re: ImageShack Hacked by Anti-sec Movement

mini — Mon, 13 Jul 2009 12:38:42 -0000

If something in an OS has a fix out within hours, I am worried... what other holes are being opened with a not properly QA'd fix??

Re: ImageShack Hacked by Anti-sec Movement

Diamondstar — Mon, 13 Jul 2009 11:03:13 -0000

It is quite a shame that image shack was hacked. Why, what's the point, good golly.......it's just image shack. I think hackers should aim a little higher, & work on some higher hanging fruit, ie NSA ( National Security Agency), or the IRS, FBI.......really shoot for the big stuff. Want to complain about full disclosure, hack the aforementioned........image shack ........please.....

Re: ImageShack Hacked by Anti-sec Movement

Diamondstar — Mon, 13 Jul 2009 11:00:14 -0000

Re: ImageShack Hacked by Anti-sec Movement

none — Mon, 13 Jul 2009 10:56:44 -0000

Was this really more than a .htaccess URL rewrite rule? Seems simple to me.

Re: ImageShack Hacked by Anti-sec Movement

jack — Sun, 12 Jul 2009 18:17:52 -0000

Hey all, sorry about the delay in posting an update about this. We will be posting more details in our blog (at http://imageshack.us). Hackers were able to exploit one of our servers to gain control of how images are being served, which was detected almost within a minute. It took about an hour to restore normal functionality to user images, and none of the user images were lost of deleted due to this attack. Only a fraction of the servers were affected, so we were able to isolate them and remove the hack very quickly. ImageShack team has been working none stop this weekend, doing security audits and hardening our systems, so something like this never happens again. ImageShack has been hosting your images since 2003, has never had an outage or been hacked similar to this incident. Please be assured that security of your images and videos is our top priority, and we are doing everything what can be possibly done to keep your hosting media secure.

Best,
-Jack Levin
CEO, ImageShack Corp.

Re: ImageShack Hacked by Anti-sec Movement

minanube — Sun, 12 Jul 2009 14:07:35 -0000

hahahah.....

amazing having fun out there :P

Re: ImageShack Hacked by Anti-sec Movement

Andrew — Sun, 12 Jul 2009 13:43:38 -0000

You sound like you're raging more than these guys. And you made yourself sound so stupid.
Read King Joe's comment and you'll see how retarded you are.