Antisec hackers, an offshoot of sorts from hacktivist group Anonymous, claim to have hacked the laptop of FBI agent Christopher Stangl, who the FBI has put in recruitment videos looking to hire "cyber security experts." Hackers claimed to have found a .csv file with "a list of 12,367,232 Apple iOS devices including Unique Device Identifiers (UDID), user names, name of device, type of device, Apple Push Notification Service tokens, zipcodes, cellphone numbers, addresses, etc."
Twenty-year-old Raynaldo Rivera has been arrested by the FBI for his part in various cyber attacks as part of the Lulz Security hacking group. The FBI alleges that Rivera took part in hacking operations against on Sony Pictures in May and June of 2011. They further claim that he worked with Cody Kretsinger, another LulzSec member who pled guilty to hacking charges in April of this year.
According to this Joystiq report, EA has made a ton of money off of FIFA 12's Ultimate Team DLC last year, but this year it wants to avoid the headaches associated with the "FIFA hack." The company reportedly made over $39 million in just three months off the DLC, a 69 percent increase from the same period the year before. But it also created a lot of headaches for consumers who found their security on Xbox Live compromised.
Blizzard Entertainment president and co-founder Mike Morhaime issued a statement late last night revealing that Battle.net had been infiltrated by unknown sources and that some user data may have been compromised. Though his note to the community downplayed the security breach, Morhaime acknowledged that a list of email addresses for global Battle.net users outside of China, cryptographically scrambled versions of Battle.net passwords, answers to personal security questions, and information related to Mobile and Dial-In Authenticators were illegally accessed.
After the Ukrainian Government took down the BitTorrent site Demonoid (at the request of Interpol, apparently), hacktivist group Anonymous attacked several government websites and vowed more actions in the future as a form of protest. The Kyiv Post is reporting that the web pages for the Ukrainian Anti-Piracy Association, the Ukrainian Agency for Copyright and Related Rights, and the National Television and Radio Broadcasting Council of Ukraine were unavailable for a short amount of time.
According to a new survey commissioned by Dashlane, three in five Internet users feel vulnerable to being hacked, but still engage in "risky behavior" online. The survey also found that 62 percent of online adults reuse the same password for more than one of their online accounts as well.
Apple has found a way to fight against a Russian hacker who made it so that users could circumvent the in-game purchase system to get premium versions of freemium games for free. Apple claims that it has found a solution to the Borodin App Store hack operated by Russian hacker Alexey Borodin.
Borodin admitted on his blog that the party is over for his hacking service.
"Currently game is over," Russian hacker Alexey Borodin said.
According to hacking-alert service PwnedList over eight million users who frequent the online gaming service Gamigo have had their personal data compromised. According to the site, a security breach in March of this year led to the theft of usernames, passwords, and email addresses onto the password-cracking site Inside Pro.
Luckily Gamigo users concerned about their private information floating in the wilds of the Internet can visit the site, sign up for a free account and see if their data has been compromised.
According to Gamasutra a hacker based in Russia has made life difficult for Apple and its App Store. Apparently the Russian hacker has found a way to work around the iOS in-app purchase system, which lets him or anyone that might get their hands on his hack to download the premium version of a game for free. On Friday, hacker Alexey V.
Graphics hardware maker Nvidia acknowledged that its user forums were hacked last week by unauthorized third parties and that user details may have been compromised. In light of the security breach Nvidia has temporarily suspended all of its web-based services.
The company said that it was forced to shut down its official forums last week, after it identified what it characterized as "suspicious activity" on the site. Nvidia confirmed that hackers accessed usernames, email addresses, passwords and more.
According to this Kotaku report, Sega is investigating a recent hacking incident in Phantasy Star Online 2. The free-to-play sci-fi MMORPG sequel was hacked so that vital NPCs players have to interact with were out of reach - somehow put on high structures that were well out of reach of players.
Back in March we reported the FBI's plans to shut down the DNS servers it was running to allow those affected by the DNSChanger malware to access the Internet. Dating all the way back to 2007, DNSChanger targeted Windows or Mac systems by manipulating Domain Name Servers (DNS) and DNS routing. When a computer became infected the malware would redirect DNS requests to servers controlled by an internet crime ring, which then served up web ads to users.
Individuals claiming to be a part of the hacktivist group Anonymous have claimed responsibility for a series of cyber attacks on Japanese government websites. The websites for Japan's Finance Ministry, Supreme Court, and the DPJ and LDP political parties were taken down temporarily by attacks. The sites are now back online.
Two British men admitted to being part of the hacktivist group LulzSec and to committing various acts of hacking against high profile targets in a British court today.
Ryan Cleary pled guilty to hacking charges to being a member of LulzSec. Jake Davis also admitted to attacking the Serious Organised Crime Agency (SOCA) in the UK. The two men entered a plea of guilty earlier today while two others, Ryan Ackroyd and an unnamed 17-year-old, denied the charges.
Riot Games has issued a statement via its official League of Legends forums letting players in Europe know that its user database for the game has been compromised. While the company says that no payment information was compromised during the security breach,
the company did not say what personal information may have been stolen. From the forum post:
A number of Diablo III players have claimed that they have logged into their accounts and found that they have been hacked. Players claim that their gear, characters, and gold vanished without a trace. Blizzard Entertainment says that it is taking these reports "very seriously" and is looking to what exactly is going on. Other reports have indicated that this was being caused by some sort of bug.
A new profile of George "Geohot" Hotz, the guy who jailbroke the iPhone and then the PlayStation 3, went live today in The New Yorker Magazine.
Perfect World Entertainment's Cryptic Studios has issued a statement warning customers of its various MMO titles that it has suffered from a security breach. The security breach happened way back in December 2010, but was only recently detected because the company beefed up its security. The breach resulted in hackers obtaining user account names and encrypted passwords, some of which they apparently have managed to crack.
Sony recently yanked two games from the PlayStation Store because they found a vulnerability to hacker Wololo's Vita exploit - commonly known as the "Vita Half-Byte Loader" (VHBL). VHBL allows unsigned code - homebrew or code that has not been approved by the platform holder - to run in the PSP emulator.
A dramatic story making the rounds claims that if "you don't have your computer malware free by July 9th the FBI will shut your computer down." As Techland points out, the story has roots in a small bit of reality but reporting on it has been a little bit overblown. The story originates all the way back to 2007, when malware called DNSChanger managed to infect millions of computers around the world.
A new message posted on Pastebin and attributed to the hacking group Anonymous promises to shut down the entire internet on March 31. The group says that it will target the 13 root DNS servers that make up the bulk of the servers that give URL names to most of the Internet.
As to why they would want to do this, they say the following:
Sony has taken two PSP games off the PlayStation Store, after it was revealed that the games might contain an exploit that allowed hackers access to the handheld's core functionality. In other words, it gave them the ability to run any kind of software they wanted to on the Vita. The two PSP games taken offline are Everybody's Tennis and MotorStorm Arctic Edge. The latter may have been taken off the store for other reasons and the timing of its removal could simply be coincidental.
According to this C&VG report, Capcom is aware of hacks being used to play unreleased Street Fighter x Tekken DLC content on Xbox Live, and will do something about it.
Jason Helton pens an F-U letter to the guy who hijacked his Xbox Live account (and credit card) and decided to buy a bunch of crap on Xbox Live. The lover letter can be found over at Joystick Division, and might be funny until you consider what this poor guy had to do stop this interloper. For one, he probably had to cancel his credit card and try to dispute any purchases the guy made, and then he decided to simply wipe his Xbox Live account to avoid any further agitation.
A Twitter account that serves as the "news source" of the hacking group Anonymous vows revenge against the FBI for six arrests it made of LulzSec and Anonymous members announced yesterday and offers tips on how to strike back. @YourAnonNews also encouraged members in the group, telling them not to be discouraged that top members had turned FBI informants.
Update: The FBI has issued a press release with more details on the arrests made so far. They name names and list all of the charges.
The hacktivist group Anonymous continues to assault government websites in protest of the Anti-Counterfeiting Trade Agreement (ACTA). The group has reportedly hacked several U.S. government web sites including business.ftc.gov, consumer.gov, and the National Consumer Protection Week official site (ncpw.gov). According to VentureBeat the group compromised the websites and then posted anti-ACTA statements and a PSA video.
Below is the statement they posted on the sites: