Criminal Hackers

Church of Scientology responds to Internet attacks

After several days of Internet attacks by a group calling itself Anonymous, the Church of Scientology has responded with a comment about the posting of one of its videos. A response on Friday evening from the Church of Scientology did not address CNET News.com's specific request for comment on the denial-of-service attacks themselves. Instead, Karin Pouw, public affairs director for the Church of Scientology, focused on the leak of a Tom Cruise video on YouTube earlier in the week. The response reads, in full:

As the Church previously announced, the pirated and edited excerpts of Mr. Cruise were … Read more

Whose Internet is it anyway?

This week we've seen two Internet events that are more alike than dissimilar. On Wednesday, an Estonian court convicted a 20-year Russian for his part in last spring's distributed denial-of-service (DDoS) attacks on that nation. On Thursday, word of mounting DDoS attacks on the Church of Scientology spread. Ultimately, both events could have larger repercussions.

The attack on the Estonian Web sites was prompted by an Estonian government plan to move a statue and grave sites honoring Russian-Estonians who died fighting the Nazis. Gadi Evron of Beyond Security said at last year's Black Hat USA that he … Read more

Technical aspects of the DDoS attacks upon the Church of Scientology

Dr. Jose Nazario of Arbor Networks has been looking at the technical side of the distributed denial of service (DDoS) attacks upon domain registered to the Church of Scientology International. In general he finds that while there have been a lot of DDoS attacks, the early ones were mild. They were, however, stronger than the DDoS attacks upon various Estonian sites last spring. As a protective measure, the Church of Scientology has since moved its domain to a more protected space.

Prior to the move, Nazario found that on January 19, there were 488 DDoS events, all of which appear … Read more

Anonymous steps up its war with Scientology

A group of vigilantes--calling themselves Anonymous, or Anon--are escalating their attacks against the Church of Scientology in what they consider to be Internet censorship by issuing new video challenges. In one video posted to YouTube, Anonymous addresses the many news organizations covering the war, stating that the group has been watching. While the individuals behind the effort generally support the coverage, they also severely fault the media.

"We find it interesting that you did not mention the other objections in your news reporting. The stifling and punishment of dissent within the totalitarian organization of Scientology. The numerous, alleged human … Read more

Anonymous hackers take on the Church of Scientology

A copyright violation claim by the Church of Scientology against the posting of one of its videos to YouTube has prompted a full-on assault by a group calling itself Anonymous.

The video, in which Tom Cruise proclaims, in part, that Scientologists are the only experts on the mind, was pulled by YouTube over the weekend at the request of the Church of Scientology as part of a long-standing effort to keep copyrighted material from appearing on the Internet. Other sites have since posted the Cruise video in full.

In response to the take-down of the Cruise video, a group of … Read more

Winny Trojan author arrested in Japan

On Thursday, Japanese authorities announced the arrest of a college student and two associates who are alleged to have written and distributed a Trojan horse via a popular peer-to-per network.

Because Japan currently lacks computer crime laws, the three (whose names were withheld) were instead arrested on copyright violations. Between October and November of 2007, the author of a Trojan known as Harada used images of a popular anime character to entice users of the Winny P2P network to download the malware.

Computers infected with one strain of Harada displayed a message saying, "You're already dead. Come here. … Read more

First conviction for Estonia's 'cyberwar'

A 20-year-old Russian has been convicted for organizing some of the attacks on Estonia's government sites during spring 2007, the Agence France-Presse reported on Thursday.

"Dmitri Galushkevich is the first hacker to be sentenced for organizing a massive cyberattack against an Estonian Web page," Gerrit Maesalu, spokesman for the regional prosecutor's office in northeast Estonia, told the AFP. Galushkevich was fined 17,500 krooni (about $1,600). He admitted his guilt, said Maesalu.

The distributed denial of service (DDoS) attacks, which some security experts have alternatively called a flash mob or the first-ever cyberwar, was prompted … Read more

Drive-by pharming attack hits home

Whenever you type an address into an Internet browser, that address is instantly resolved into the site's numerical Internet address by a DNS server located somewhere in the world. On Tuesday, Symantec announced that online criminals have started to remotely redirect your home network router's DNS server so that whenever you type in a financial institution or other trusted site, your browser will instead be redirected to a bogus or phishing Web site.

The practice, called pharming, usually attacks the DNS servers directly, but this latest attack brings it all home (if you are using broadband connectivity). Fortunately, … Read more

MySpace page serves up fake Microsoft security update

According to security vendor McAfee, one of the profiles on MySpace currently serves up a fraudulent Microsoft security update that, if clicked, attempts to load malicious software. The profile of a 42-year-old woman from Arkansas appears to exist solely for the purpose of infecting visitors. McAfee says that both Microsoft and MySpace have been contacted.

Joris Evers, publicity director at McAfee, says "attackers send unwitting MySpace users a friend request, asking them to become friends with 'Rita.' When the user clicks to see who 'Rita' is they are sent to the profile that serves up malware." The profile … Read more