Antisec Movement

From HandWiki
Revision as of 05:40, 27 June 2023 by Sherlock (talk | contribs) (add)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Short description: Hacking (computer security)


The Anti-sec movement's manifesto which had replaced a number of pictures hosted by ImageShack.

The Anti Security Movement (also written as antisec and anti-sec) is a movement opposed to the computer security industry. Antisec is against full disclosure of information relating to software vulnerabilities, exploits, exploitation techniques, hacking tools, attacking public outlets and distribution points of that information. The general thought behind this is that the computer security industry uses full disclosure to profit and develop scare-tactics to convince people into buying their firewalls, anti-virus software and auditing services.

Movement followers have identified as targets of their cause:

  • websites such as SecurityFocus, SecuriTeam, Packet Storm, and milw0rm,
  • mailing lists like "full-disclosure", "vuln-dev", "vendor-sec" and Bugtraq, and
  • public forums and IRC channels.

In 2009, attacks against security communities such as Astalavista[1] and milw0rm,[2] and the popular image-host ImageShack,[3][4] have given the movement worldwide media attention.

History

The start of most public attacks in the name of the anti-security movement started around 1999. The "anti-security movement" as it is understood today was coined by the following document which was initially an index on the anti.security.is website.[5][6][7][8]

The purpose of this movement is to encourage a new policy of anti-disclosure among the computer and network security communities. The goal is not to ultimately discourage the publication of all security-related news and developments, but rather, to stop the disclosure of all unknown or non-public exploits and vulnerabilities. In essence, this would put a stop to the publication of all private materials that could allow script kiddies from compromising systems via unknown methods.

The open-source movement has been an invaluable tool in the computer world, and we are all indebted to it. Open-source is a wonderful concept which should and will exist forever, as educational, scientific, and end-user software should be free and available to everybody.

Exploits, on the other hand, do not fall into this broad category. Just like munitions, which span from cryptographic algorithms to hand guns to missiles, and may not be spread without the control of export restrictions, exploits should not be released to a mass public of millions of Internet users. A digital holocaust occurs each time an exploit appears on Bugtraq, and kids across the world download it and target unprepared system administrators. Quite frankly, the integrity of systems world wide will be ensured to a much greater extent when exploits are kept private, and not published.

A common misconception is that if groups or individuals keep exploits and security secrets to themselves, they will become the dominators of the "illegal scene", as countless insecure systems will be solely at their mercy. This is far from the truth. Forums for information trade, such as Bugtraq, Packetstorm, www.hack.co.za, and vuln-dev have done much more to harm the underground and net than they have done to help them.

What casual browsers of these sites and mailing lists fail to realize is that some of the more prominent groups do not publish their findings immediately, but only as a last resort in the case that their code is leaked or has become obsolete. This is why production dates in header files often precede release dates by a matter of months or even years.

Another false conclusion by the same manner is that if these groups haven't released anything in a matter of months, it must be because they haven't found anything new. The regular reader must be made aware of these things.

We are not trying to discourage exploit development or source auditing. We are merely trying to stop the results of these efforts from seeing the light. Please join us if you would like to see a stop to the commercialization, media, and general abuse of infosec.

Thank you.

~el8

~el8 was one of the first anti-security hacktivist groups. The group waged war on the security industry with their popular assault known as "pr0j3kt m4yh3m". pr0j3kt m4yh3m was announced in the second issue of ~el8. The idea of the project was to eliminate all public outlets of security news and exploits. Some of ~el8's more notable targets included Theo de Raadt, K2, Mixter, Ryan Russel (Blue Boar), Gotfault (also known as INSANITY), Chris McNab (so1o), jobe, rloxley, pm, aempirei, broncbuster, lcamtuf, and OpenBSD's CVS repository.

The group published four electronic zines which are available on textfiles.com.[9]

pHC

pHC[10] is an acronym for "Phrack High Council". This group also waged war against the security industry and continued to update their website with news, missions, and hack logs.[11]

Less recent history

Most of the original groups such as ~el8 have grown tired of the anti-security movement and left the scene. New groups started to emerge.

dikline

dikline kept a website[12] which had an index of websites and people attacked by the group or submitted to them. Some of the more notable dikline targets were rave, rosiello, unl0ck, nocturnal, r0t0r, silent, gotfault, and skew/tal0n.[13]

More recent history

giest

In August 2008, mails were sent through the full-disclosure mailing list from a person/group known as "giest".

Other targets include mwcollect.org in which the group released a tar.gz containing listens of their honeypot networks.[14][15]

ZF0

ZF0 (Zer0 For Owned) performed numerous attacks in the name of pr0j3kt m4yh3m in 2009. They took targets such as Critical Security, Comodo and various others. They published 5 ezines in total.[16] July 2009, Kevin Mitnick's website was targeted by ZF0, displaying gay pornography with the text "all a board the mantrain."[17]

AntiSec Group

A group known as the "AntiSec Group"[18] enters the scene by attacking groups/communities such as an Astalavista,[1] a security auditing company named SSANZ and the popular image hosting website ImageShack.[3]

Graffiti reading "Antisec"[18] began appearing in San Diego, California in June 2011 and was incorrectly[19] associated with the original Antisec[18] movement. According to CBS8, a local TV affiliate "People living in Mission Beach say the unusual graffiti first appeared last week on the boardwalk." They also reported "...it was quickly painted over, but the stenciled words were back Monday morning." It was later realized[by whom?] to be related to the new Anti-Sec movement started by LulzSec and Anonymous.[20]

On April 30, 2015 the AntiSec Movement reappeared and started Doxing police officers by hacking their databases. On April 30, 2015 they hacked into Madison Police Department and released officers names, address, phone numbers, and other personal data in relation to an Anonymous operation.[21][22]

References

  1. 1.0 1.1 "Astalavista Hacked and Torn apart". Kotrotsos. http://kotrotsos.com/2009/astalavista-hacked-and-torn-apart. 
  2. "Full Disclosure: Ant-Sec - We are going to terminate Hackforums.net and Milw0rm.com - New Apache 0-day exploit uncovered". Seclists.org. http://seclists.org/fulldisclosure/2009/Jul/164. 
  3. 3.0 3.1 "ImageShack hacked in oddball security protest". The Register. https://www.theregister.co.uk/2009/07/13/imageshack_hack/. 
  4. "ImageShack hacked by anti-full disclosure movement". ZDNet. http://blogs.zdnet.com/security/?p=3725. 
  5. "Anti Security :: Save a bug, save a life". 2001-03-01. http://anti.security.is/. 
  6. "Archived copy". http://whitehate.org/backup/antisec.roots/antisec.txt. 
  7. "Archived copy". http://whitehate.org/backup/antisec.roots/ats-policy.txt. 
  8. "Archived copy". http://whitehate.org/backup/antisec.roots/jj.txt. 
  9. "T E X T F I L E S". Web.textfiles.com. http://web.textfiles.com/ezines/EL8/. 
  10. phrack.efnet.ru
  11. "Index of /Backup/Oldschool/PHC". http://whitehate.org/backup/oldschool/phc/. 
  12. "dikline.org". dikline.org. http://dikline.org. 
  13. [1]
  14. "Security researchers' accounts ransacked in embarrasing [sic hacklash"]. theregister.co.uk. https://www.theregister.co.uk/2008/08/13/security_researchers_targeted/. 
  15. "Archived copy". http://archives.neohapsis.com/archives/fulldisclosure/2008-08/att-0139/geist01-aa. 
  16. "Index of /ezines/ZF0". Gonullyourself.org. 2012-01-13. http://www.gonullyourself.org/ezines/ZF0/. 
  17. "Mitnich website targeted". Theregister.co.uk. June 26, 2009. https://www.theregister.co.uk/2009/06/29/mitnick_website_targeted/. 
  18. 18.0 18.1 18.2 "antisecmovement.com". antisecmovement.com. http://antisecmovement.com/. 
  19. ""Anti-Sec" group spreads message through graffiti in Mission Beach" (in en-US). https://www.cbs8.com/article/news/anti-sec-group-spreads-message-through-graffiti-in-mission-beach/509-b61cc4f6-0787-4ce7-9930-f61e728100ce. 
  20. "Unusual stenciled graffiti on Mission Beach boardwalk". WorldNow and Midwest Television. http://www.cbs8.com/story/14941495/unusual-stenciled-graffiti-on-mission-beach-boardwalk. 
  21. #OpRobinson
  22. Kopfstein, Janus. "AntiSec Attacks Wisconsin Cops After Shooting Death of Unarmed Teen". http://motherboard.vice.com/read/anonymous-attacks-wisconsin-cops-after-shooting-death-of-unarmed-teen. 



Retrieved from "https://handwiki.org/wiki/index.php?title=Antisec_Movement&oldid=2996939"