HBGaryMore e-mail messages believed to belong to HBGary Federal Chief Operating Officer Greg Hoglund were posted online Sunday, fulfilling a promise by online mischief making group Anonymous to further embarrass the Washington D.C. security firm, whose CEO aroused the ire of the hacktivists last week. 

A 2 gigabyte file titled “HBGary More Leaked Emails” was posted on the file swapping Website The Pirate Bay on Sunday and purports to be a collection of some 27,000 email messages from Hoglund, a noted malware researcher who is an expert on rootkits, among other topics.

In a statement accompanying the post, Anonymous claimed it was releasing Hoglund’s e-mail to retaliate for the COO’s threats to “bring down” Anonymous with the help of law enforcement. 

“Let’s not forget that the first time you tried to do something like this, we did not overlook it, and we are not overlooking it now,” the message reads, in an obvious reference to HBGary Federal CEO Aaron Barr’s pledge, in an article in the Financial Times, that he would use a presentation at the Security B-Sides Conference to reveal the names of Anonymous members. 

The group responded within days, exploiting security vulnerabilities in an HBGary Web site and using social engineering to gain access to company resources, including the HBGary e-mail server and social networking accounts belonging to Barr and others. 

In all, the group claims to have released 71,000 e-mails in all from the company since last week. Those emails have already produced their share of controversy, including revelations that HBGary Federal’s senior management had proposed campaigns to discredit Wikileaks and its supporters, and to engage in political skullduggery on behalf of the U.S. Chamber of Commerce. 

Categories: Data Breaches, Government

Comments (15)

  1. tinker
    3

    Folks:

    The first thing I did after a quick glance at the
    first Hbgary emails was to forward the web link (not the data) to a law
    enforcement agency in my country whom I trust. The first response I
    received was ‘Are there companies like this in our country?’. They were not happy.
    This latest dump is beyond the pale. Theft, extortion, fraud,
    development of maulware for a government contractor… and I’ve only had
    access to the data less then a day. That goes for my friends mentioned
    above too. None of us has gotten much any sleep since.

    From
    my personal experience, I don’t think Anonymous has anything to worry
    about from law enforcement in other countries beside the USA. They will
    be far  more interested in the foreign affairs aspect of this
    one. Anonymous could do a lot for their ‘reputation’ by pairing
    with law enforcement in their respective countries to make sure
    companies like Hbgary don’t get a foothold internationally.

    In fact, Anonymous should also get in touch with the equivalent of the ‘Foreign Office’ in their government. I’m sure they would find it in their ‘national interest’.

    If I can’t see these folks in jail then at least I can keep them off my turf.

    It takes a long time to earn trust… a second to destroy it.

    tinker

  2. Anonymous
    5

    What an idiot.  He works in security and has no idea of the hacker culture.  He deserves what he got.

  3. Leo Ray Ingle
    6

    Criminal conspiracies, indulged in by the both government and government contractors, are moving the U.S. closer to a fascist state.  Greg Hoglund should be prosecuted and jailed by our law enforcement agencies.  HBGary, with its millions in ill-gotten profits, should be bankrupted, its charter revoked. 

    Thanks, “Anonymous”, we are in your debt for joining Wikileaks and half-a-dozen other courageous groups around the globe, in shining light on the despicable living in dark corners.

    For too long have government and corporations treated citizens like mushrooms, keeping us in the dark and feeding us sh*t.

    Great work!!

  4. Anonymous
    8

    We also have emails from the FBI,CIA,WHITEHOUSE and 4 other agencies. Expect all 4,000,000 to be  released if wikileaks or it Founder dies.

  5. Ralph
    10

    As predicted, the internet has changed everything. Less than 20 years after the first web browser was released to the public, a small group of hackers can already say something as grandiose and apparently overblown as…

    “Let’s not forget that the first time you tried to do something like this, we did not overlook it, and we are not overlooking it now.”

    … and every organization, large or small, suddenly has to take such a statement very, very seriously.

    That sound you hear, like an oncoming tornado, is the roar of digital network technology, headed straight for the power centers of our civilization.

    What happened to airplanes on that grim day in 2001, the day of box cutters and weak cockpit doors, can also, in a different form, happen to large companies and governments. In both cases, a few technological flaws were found in existing security systems. The airplane situation, a classic Day Zero attack, was fixed very quickly. In fact, that particular security hole stayed open for only about two hours. The last hijacked passenger jet was brought down before reaching its target because someone alerted a passenger (via cell phone?) about planes that had already crashed into the WTC and the Pentagon. As soon as passengers understood what was happening, they put a stop to the attack, even though they risked (and suffered) death by doing so.

    Computer vulnerabilities, on the other hand, have not yet, and probably cannot ever be eliminated in the current atmosphere of day by day expansion of capabilities, along with the inevitable bugs that come with each new feature, as soon as it is duct-taped onto an already critically unstable framework.

    The changes we have already seen are only the beginning. The nature of work, money and government will all continue to mutate under the influence of advancing digital technology, and the power differential between large organizations and small groups of determined people equipped with technology will continue to narrow.

  6. Anonymous
    13

    What a moron… The guy was supposed to be a security expert and got his bservers hacked. Well, I suppose his career is done. Better prepare for law class suits coming up soon….

  7. Anonymous
    15

    Probably all of them are ready to change their physical features and go into hiding. Greg was saying of Aaron that he will be like a national hero … more like a national scumbag.

Comments are closed.