HomeHacks
December 25, 2011, 4:50PM

Anonymous Hacks Security Think Tank STRATFOR

Hackers with Anonymous have struck a well-known security and intelligence think tank based in Texas and made off with some 200 GB of credit card data and other information.

Members of the loosely-affiliated collective announced the attack on STRATFOR on Twitter. Among the items reportedly pilfered is STRATFOR’s closely-guarded client list, which includes organizations such as the U.S. Army. The credit card details were stored in clear text, members of the group claimed.

In an email to STRATFOR members viewed by Threatpost, STRATFOR CEO George Friedman acknowledged the company's Website had been attacked and said that STRATFOR’s servers and email had been suspended as a result.

Editor's Pick

Threatpost Newsletter Sign-up

“We have reason to believe that the names of our corporate subscribers have been [posted] on other web sites,” Friedman states. “We are diligently investigating the extent to which subscriber information may have been obtained.”

“Stratfor and I take this incident very seriously,” he continued. “Stratfor's relationship with its members and, in particular, the confidentiality of their subscriber information, are very important to Stratfor and me. We are working closely with law enforcement in their investigation and will assist them with the identification of the individual(s) who are responsible.”

As of publication, the Website for STRATFOR displayed a message stating the site was undergoing maintenance. 

Commenting on this Article is closed.

Comments

Submitted by Anonymous (not verified) on Sun, 12/25/2011 - 11:44pm.

The real pay day in this high profile hacking is the account name and password information. 

Expect to see that information being used to 'attempt' to gain access to other accounts of those 'high profile' members.   Let us hope that these users were clever enough to use alternative passwords to their accounts on their employers networks.

Security Think Tank...  isn't that hilariously ironic.

Submitted by Anonymous (not verified) on Mon, 12/26/2011 - 7:36am.

I'll agree with you on "Security Think Tank" hehe

Submitted by Jim Mooney (not verified) on Mon, 12/26/2011 - 6:03pm.

Stratfor is a paranoid outfit from Texas which, unfortunately, is read by the politically powerful. Paranoia leads to fear, repression, war, and just plain bad judgment.

Of course, now they actually have something real to be paranoid about ;')

I've always said they should give Texas back to Mexico.

Submitted by Jim Mooney (not verified) on Mon, 12/26/2011 - 6:05pm.

Alternative passwords - not likely. People are lazy and low-level admin or civil service employees are vastly overworked. They probably have One PW for everything, including their own email.

Submitted by Anonymous (not verified) on Mon, 12/26/2011 - 7:49pm.

Anonymous has made a post on pastebin denouncing they are responsible for the attack. The link is located on the Wikipedia Stratfor page.

 

Submitted by Anonymous (not verified) on Tue, 12/27/2011 - 9:27pm.
After examining the several email names and associated passwords posted by Anoymous on pastebin (the url was identified on Cryptome), I was amazed by the simplistic and easily cracked passwords used by most registered users (at least those posted, maybe they didn't post account names with passwords they hadn't cracked). Talk about weak passwords! One of the more popular was “stratfor” and most were simple dictionary words with a few numbers thrown in. I found a handful with maybe one non-character symbol. For me, it was an eye-opener on the poor passwords people select.
Submitted by bubbleshooter (not verified) on Wed, 01/25/2012 - 6:47am.
Hey, thank you for revealing your ideas in this article. This is really a very nice website.

 

Copyright © 2012 threatpost.com | Terms of Service | Privacy