network Archives - Good Shepherd News - Fastest Growing Religious, Free Speech & Political Content

9 Things Everyone Should Know About The Hacktivist Group Anonymous

The Truth News — Tue, 27 Dec 2022 21:34:28 +0000

Who are Anonymous and why are they fighting alongside Ukraine?

Hacking group Anonymous has declared a cyberwar on Russia in response to its attack on Ukraine. But who are Anonymous, and what interest do they have in siding with Ukraine?

Now easily distinguishable by a white mask with a grin, Anons are members of a decentralized international collective of tech activists and hackers. As they would claim, Anonymous is no one and everyone at once, with anyone being able to sign their hacking effort under the coalition’s name.

Their targets have included governments, state organizations, tech giants, and big enterprises. Perhaps most famous for their politically and socially motivated cyberattacks, they are viewed by many as “digital superheroes,” who serve their own justice – especially when law enforcement fails to do so.

“In the new video Vibes made, Anonymous represents extrajudicial justice, the superhero entering to right what the normal course of the law cannot—an idea that can seem deeply appealing now that the ordinary enforcers of justice—the police—appear to some to be the source of the crime,” Dale Beran writes for The Atlantic.

The group is believed to have originated in 2003 on the message board 4chan, which gave the name “Anonymous” to all users who decided not to specify their usernames. Mostly teenagers, users would gather together in virtual chats to discuss modern politics.

Small-scale hacks started off as coordinated pranks and raids on online games and chat rooms. But by 2008, the group began choosing more serious targets, such as the Church of Scientology. At the same time, their signature Guy Fawkes masks, used as an inspiration by David Lloyd in V for Vendetta, became a symbol of Anonymous and their rebellion against the abusers of power.

Fight for Ukraine

On February 24th, the hacktivist collective announced that they’re officially in cyberwar against the Russian government following the invasion of Ukraine.

Since then, they have leaked the database of the Ministry of Defence and the Ministry of Economic Development of Russia, taken down many state websites, including government.ru, hacked Russian state TV channels, and intercepted Russian military communications.

“Anonymous has ongoing operations to keep .ru government websites offline,, and to push information to the Russian people so they can be free of Putin’s state censorship machine. We also have ongoing operations to keep the Ukrainian people online as best we can,” the collective shared in a tweet.

While most Russian organizations remained silent about the nature of attacks, Russia Today (RT) – the state-run TV channel that Anonymous referred to as “the Russian propaganda station” – has attributed DDoS attacks on its website to the group.

“After a statement by Anonymous, RT’s websites became the subject of massive DDoS attacks from some 100 million devices, mostly based in the U.S. Due to the attacks there might be temporary website access limitations for some users, yet RT is promptly resolving these issues,” an RT spokesperson told Motherboard in an email.

On the other hand, Roscosmos has denied claims that a series of disruptive attacks by the affiliates of Anonymous led to Russian officials losing control over their “spy satellites.” Originally, the NB65 hacking group claimed to have shut down the Control Center of the Russian Space Agency. The Director-General of Roscosmos, Dmitry Rogozin, called the information of “petty swindlers” to be false, previously stating that the Russian space industry is effectively protected from cyberattacks.

Since the conflict is ongoing and many Russian entities are reluctant to disclose cyberattacks, it can be complicated to verify their source and accuracy. However, many experts suggest that it is indeed in line with the collective’s previous deeds and capabilities.

“It can be difficult to directly tie this activity to Anonymous, as targeted entities will likely be reluctant to publish related technical data. However, the Anonymous collective has a track record of conducting this sort of activity and it is very much in line with their capabilities,” Jamie Collier, a consultant at US cybersecurity firm Mandiant, told The Guardian.

But what’s next? As hackers also join the Russian forces – such as the Conti ransomware group that sided with Putin – it looks like we’ll find ourselves not only in a state-led cyberwar, but also in a conflict reflecting private interests and personal values. Cyberwarfare is rather different from a traditional war in the sense that independent hacktivist groups often have as many – if not more – skills and resources to cause real disruption.

In today’s world, as some experts believe, cyberattacks are not some distinct digital incidents that have no physical effect anymore – they’re a part of a real war happening on the ground.

“We have long theorized that cyberattacks are going to be part of any nation-state’s arsenal and I think what we’re witnessing for the first time frankly in human history is cyberattacks have become the weapon of first strike,” Hitesh Sheth, CEO of Vectra AI, told CNBC.

The anti-oppression coalition

Over time, many people have been arrested over affiliation with Anonymous in the US, the UK, India, Spain, the Netherlands, Turkey, and other countries. The group has drawn the attention of the FBI and various governments following a series of high-profile cyberattacks.

In 2010, Anonymous targeted PayPal, Visa, Amazon, and Mastercard for cutting off WikiLeaks donations.

Later in 2011, they successfully launched DDoS attacks on eight Tunisian government’s websites during the Tunisian revolution. Continuing with their support for the Arab Spring, they’ve leaked the passwords of the email addresses, as well as emails, of hundreds of Middle Eastern governmental officials and targeted Egyptian government websites during the Egyptian revolution.

Many attacks were to follow: from hacking the Syrian Defense Ministry website and placing a pro-democracy flag on it to joining Nigeria’s People’s Liberation Front and the Naija Cyber Hacktivists.

While not all deeds of the collective always had a positive outcome (for example, in 2014, they outed a wrong man for the police shooting of Michael Brown in 2014’s Missouri protests,) they earned them a reputation of fighters for justice.

Whether you applaud their Robin Hood-style ideology of championing free speech or detest their reckless disregard for the consequences of their actions, it’s undeniable that Anonymous has become a force to be reckoned with in recent years. From hacking politicians’ emails to taking down government websites, many of the group’s actions seem to straddle the line between good and evil. Maybe you can figure out which side of the fence they land on after reading these nine facts.

9 Things Everyone Should Know About The Hacktivist Group Anonymous

By: Wes Walcott

9. It’s Not an Organization

The website 4chan is an image message board where people can gather to discuss, gripe about, or confess pretty much anything they want. To facilitate the sharing of possibly incriminating matters, users on the /b/ discussion board generally used the screen name “anonymous” and from that, a subculture of similar-minded individuals with a strong sense of justice and desire the to stir things up eventually became what we know today as Anonymous. But the group has no leader—a fact symbolized by their headless man logo—and they follow no legitimate guidelines or code of conduct. Members just come and go as they please and contribute as much or as little as they like. According to journalist and former member Barret Brown, the most powerful people in Anonymous are those who can rally others to their cause and have proven their hacking skill.

8. Anyone Can Join

No authority is going to try and stop you from joining Anonymous. But if this is something you’re seriously considering, it might be a good idea to first join up with an activism group that obeys the law. This way you can get a feel for what’s involved without risking involvement in any type of illicit behavior. After that, if you still wish to engage with Anonymous, there’s a website you can go to that explains how you can encrypt your computer so you can contact them privately over internet relay chats (IRCs). Be advised that it can take several years to build the relationship with the community required to gain access to the more serious hacktivist discussions, and there are likely people lurking in the forums who aren’t who they claim to be. Although Anonymous does have members who genuinely want to do good, the fact that anyone can join means that moral values likely vary wildly. There are some cases where naive members have ended up doing jail time because they trusted the wrong anons.

7. Most Members Aren’t Actually Hackers

It’s a misconception that everyone in Anonymous is a supreme hacker with the ability crush multinational corporations with nothing more than a laptop and modem. In fact, due to the relative ease of entry, the average Anonymous member probably has very few skills that fall into the realm of hacking. However, that’s not to say that those member don’t contribute, since many of the infamous hacks carried out by the group consist of distributed-denial-of-service (DDoS) attacks that utilize the processing power of every computer available to them. In a DDoS attack, networks are overloaded with an influx of information which causes them to crash and results in associated websites being taken offline. These types of attacks can be very frustrating for website administrators and users who are unable to access affected websites until the web traffic returns to normal. In the real world, this would be the equivalent of going in to work and being denied access to the job site by a group of angry protesters.

6. How to Become an Active Participant

After you’ve encrypted your computer and joined the Anonymous community, the next thing to consider, if you haven’t already, is finding a cause that you support. For instance, if you wanted to get involved with the operation against the Islamic State in Syria (ISIS), the first thing you should do is find the IRC chat room dedicated to that operation and pledge your support there.

When they need to flex their muscle, Anonymous uses a special piece of software known as a “low-orbit ion cannon” (LOIC) to launch DDoS attacks. The software enables a computer to make a large-scale attack on any website. Targets are chosen through a voting system and launching an attack is a simple as entering a URL and then inputting the number of hits you want to send (typically enough to overload the network). However, if you disagree with a selected target, you have the option of withdrawing your computer from the botnet, thereby decreasing your involvement and weakening the power of the ion cannon.

5. Using the Low-Orbit Ion Cannon Can Put You at Risk

It should be noted that no legal ramifications should result from you joining Anonymous or chatting with others who claim affiliation, but once you get involved with the deployment of the LOIC, there’s a chance you could be looking at jail time.

In 2008, Anonymous orchestrated a number or protests against the Church of Scientology. Some of the prank-like attacks included flooding the Scientology headquarters with prank calls, sending various departments all-black faxes to deplete their ink, and even a physical protest with participants dawning bandanas and Guy Fawkes masks to conceal their identities. But the real blow came when Anonymous used the LOIC to take the Scientology website offline. Unfortunately, many anon newcomers didn’t realize that the LOIC attacks were traceable and, consequently, some of them, like 18-year-old Brian Mettenbrink, ended up serving a year in prison and coughing up $20,000 in damages to the Church of Scientology.

4. They Can Use Malware to Create Massive Botnets

A botnet is a number of Internet-connected computers communicating with other similar machines in an effort to complete repetitive tasks and objectives. This makes them perfect for cyber attacks that involve spamming, flooding email inboxes, spreading viruses, and, of course, distributed-denial-of-service. The bots are any computers being controlled or programmed by an external source. The attacker typically gains access to the “zombie” network of computers by way of a virus or some piece of miscellaneous code.

In 2010, PayPal, under heavy pressure from the government, cut off its services to WikiLinks after the document leaking website began releasing hundreds of thousands of secret U.S. diplomatic cables. In response to the situation, Anonymous went after PayPal’s main site, but the reinforced network withstood the LOIC attack. They just didn’t have enough power to bring down PayPal; that is, until two hackers going by the aliases “Snitch” and “Civil” used a virus to bring a legion of computers under their control. With the a new army of zombie computers at their disposal, Anonymous had the ion cannons it needed to take down PayPal’s main transaction site. PayPal estimated that the damage cost them close to $6 million.

3. They Gave Birth to LulzSec

Now that Anonymous could control zombie botnets, a horde of members was no longer necessary to carry out DDoS attacks. This might have been what prompted a few of the most skilled hackers to break off and form an elite team. Calling themselves LulzSec, the new group was led by “Sabu,” who was largely considered the most skilled hacker in the entire Anonymous crowd.

Having grown tired of all the activism Anonymous was getting involved in, LulzSec was more interested in messing around and causing anarchy just for the fun of it. Their first exploit came at the expense of Fox when the personal information of over 70,000 X Factor contestants was leaked online. PBS became the next target when a hacker posted a fake news story stating that the Notorious B.I.G. and Tupac were still alive and living together in New Zealand. But it wasn’t long before LulzSec dispensed with the low-risk crimes and started going after government websites belonging to organizations like the CIA and FBI.

2. They Detest Any Form of Censorship

In 2010, several Bollywood companies hired a software company called Aiplex to launch DDoS attacks on sites that were pirating their movies. This immediately grabbed the attention of the hacktivists who hate censorship in all its forms. They responded by unleashing a wave of cyber-attacks on a number of anti-piracy and pro-copyright organizations.

1. They Help Solve Crimes

Following a 2011 party, an intoxicated female teen was sexually assaulted in Steubenville, Ohio. Soon after, pictures of the incident surfaced online and were circulated in her school. But when the case was reported to the local police, they dismissed it claiming there was a lack of evidence. Well, apparently it was enough evidence for a local group of anons who picked up the trail and soon gathered enough information to get the names and physical descriptions of those suspected of the crime. The attention they brought to the case forced police to actually conduct an investigation which led to the arrest of the culprit.

Hiding in Plain Sight amongst them….. MEMBERS OF THE US GOVERNMENT ARE ALSO IN THE Hacktivist Group Anonymous PATRIOTS TILL THE END!

How to Hack WiFi Password: Guide to Crack Wi-Fi Network

The Truth News — Sat, 24 Dec 2022 07:14:48 +0000

How to Hack WiFi Password: Guide to Crack Wi-Fi Network

By Lawrence Williams source

Wireless networks are accessible to anyone within the router’s transmission radius. This makes them vulnerable to attacks. Hotspots are available in public places such as airports, restaurants, parks, etc.

In this tutorial, we will introduce you to common techniques used to exploit weaknesses in wireless network security implementations. We will also look at some of the countermeasures you can put in place to protect against such attacks.

Topics covered in this How to Hack WiFi Tutorial

What is a wireless network?

A wireless network is a network that uses radio waves to link computers and other devices together. The implementation is done at the Layer 1 (physical layer) of the OSI model.

How to access a wireless network?

Wireless Network Authentication

Since the network is easily accessible to everyone with a wireless network enabled device, most networks are password protected. Let’s look at some of the most commonly used authentication techniques.

WEP

WEP is the acronym for Wired Equivalent Privacy. It was developed for IEEE 802.11 WLAN standards. Its goal was to provide the privacy equivalent to that provided by wired networks. WEP works by encrypting the data been transmitted over the network to keep it safe from eavesdropping.

WEP Authentication

Open System Authentication (OSA) – this methods grants access to station authentication requested based on the configured access policy.

Shared Key Authentication (SKA) – This method sends to an encrypted challenge to the station requesting access. The station encrypts the challenge with its key then responds. If the encrypted challenge matches the AP value, then access is granted.

WEP Weakness

WEP has significant design flaws and vulnerabilities.

The integrity of the packets is checked using Cyclic Redundancy Check (CRC32). CRC32 integrity check can be compromised by capturing at least two packets. The bits in the encrypted stream and the checksum can be modified by the attacker so that the packet is accepted by the authentication system. This leads to unauthorized access to the network.
WEP uses the RC4 encryption algorithm to create stream ciphers. The stream cipher input is made up of an initial value (IV) and a secret key. The length of the initial value (IV) is 24 bits long while the secret key can either be 40 bits or 104 bits long. The total length of both the initial value and secret can either be 64 bits or 128 bits long.The lower possible value of the secret key makes it easy to crack it.
Weak Initial values combinations do not encrypt sufficiently. This makes them vulnerable to attacks.
WEP is based on passwords; this makes it vulnerable to dictionary attacks.
Keys management is poorly implemented. Changing keys especially on large networks is challenging. WEP does not provide a centralized key management system.
The Initial values can be reused

Because of these security flaws, WEP has been deprecated in favor of WPA

WPA

WPA is the acronym for Wi-Fi Protected Access. It is a security protocol developed by the Wi-Fi Alliance in response to the weaknesses found in WEP. It is used to encrypt data on 802.11 WLANs. It uses higher Initial Values 48 bits instead of the 24 bits that WEP uses. It uses temporal keys to encrypt packets.

WPA Weaknesses

The collision avoidance implementation can be broken
It is vulnerable to denial of service attacks
Pre-shares keys use passphrases. Weak passphrases are vulnerable to dictionary attacks.

How to Crack WiFI (Wireless) Networks

WEP cracking

Cracking is the process of exploiting security weaknesses in wireless networks and gaining unauthorized access. WEP cracking refers to exploits on networks that use WEP to implement security controls. There are basically two types of cracks namely;

Passive cracking– this type of cracking has no effect on the network traffic until the WEP security has been cracked. It is difficult to detect.
Active cracking– this type of attack has an increased load effect on the network traffic. It is easy to detect compared to passive cracking. It is more effective compared to passive cracking.

WiFi Password Hacker (WEP Cracking) Tools

Aircrack– network sniffer and WEP cracker. This WiFi password hacker tool can be downloaded from http://www.aircrack-ng.org/
WEPCrack– this is an open source Wi-Fi hacker program for breaking 802.11 WEP secret keys. This WiFi hacker app for PC is an implementation of the FMS attack. http://wepcrack.sourceforge.net/
Kismet– this WiFi password hacker online detects wireless networks both visible and hidden, sniffer packets and detect intrusions. https://www.kismetwireless.net/
WebDecrypt– this WiFi password hack tool uses active dictionary attacks to crack the WEP keys. It has its own key generator and implements packet filters for hacking WiFi password. http://wepdecrypt.sourceforge.net/

WPA Cracking

WPA uses a 256 pre-shared key or passphrase for authentications. Short passphrases are vulnerable to dictionary attacks and other attacks that can be used to crack passwords. The following WiFi hacker online tools can be used to crack WPA keys.

CowPatty– this WiFi password cracker tool is used to crack pre-shared keys (PSK) using brute force attack. http://wirelessdefence.org/Contents/coWPAttyMain.htm
Cain & Abel– this WiFi hacker for PC tool can be used to decode capture files from other sniffing programs such as Wireshark. The capture files may contain WEP or WPA-PSK encoded frames. https://www.softpedia.com/get/Security/Decrypting-Decoding/Cain-and-Abel.shtml

General Attack types

Sniffing– this involves intercepting packets as they are transmitted over a network. The captured data can then be decoded using tools such as Cain & Abel.
Man in the Middle (MITM) Attack– this involves eavesdropping on a network and capturing sensitive information.
Denial of Service Attack– the main intent of this attack is to deny legitimate users network resources. FataJack can be used to perform this type of attack. More on this in article

Cracking Wireless network WEP/WPA keys

It is possible to crack the WEP/WPA keys used to gain access to a wireless network. Doing so requires software and hardware resources, and patience. The success of such WiFi password hacking attacks can also depend on how active and inactive the users of the target network are.

We will provide you with basic information that can help you get started. Backtrack is a Linux-based security operating system. It is developed on top of Ubuntu. Backtrack comes with a number of security tools. Backtrack can be used to gather information, assess vulnerabilities and perform exploits among other things.

Some of the popular tools that backtrack has includes;

Metasploit
Wireshark
Aircrack-ng
NMap
Ophcrack

Cracking wireless network keys requires patience and resources mentioned above. At a minimum, you will need the following tools

A wireless network adapter with the capability to inject packets (Hardware)

Kali Operating System. You can download it from here https://www.kali.org/downloads/
Be within the target network’s radius. If the users of the target network are actively using and connecting to it, then your chances of cracking it will be significantly improved.
Sufficient knowledge of Linux based operating systems and working knowledge of Aircrack and its various scripts.
Patience, cracking the keys may take a bit of sometime depending on a number of factors some of which may be beyond your control. Factors beyond your control include users of the target network using it actively as you sniff data packets.

How to Secure wireless networks

In minimizing wireless network attacks; an organization can adopt the following policies

Changing default passwords that come with the hardware
Enabling the authentication mechanism
Access to the network can be restricted by allowing only registered MAC addresses.
Use of strong WEP and WPA-PSK keys, a combination of symbols, number and characters reduce the chance of the keys been cracking using dictionary and brute force attacks.
Firewall Software can also help reduce unauthorized access.

How to Hack WiFi Password

In this practical scenario, we are going to learn how to crack WiFi password. We will use Cain and Abel to decode the stored wireless network passwords in Windows. We will also provide useful information that can be used to crack the WEP and WPA keys of wireless networks.

Decoding Wireless network passwords stored in Windows

Step 1) Download the Cain and Abel tool

Download Cain & Abel from the link provided above.
Open Cain and Abel

Step 2) Select the Decoders tab and choose Wireless passwords

Ensure that the Decoders tab is selected then click on Wireless Passwords from the navigation menu on the left-hand side
Click on the button with a plus sign

Step 3) The passwords will be shown

Assuming you have connected to a secured wireless network before, you will get results similar to the ones shown below

Step 4) Get the passwords along with encryption type and SSID

The decoder will show you the encryption type, SSID and the password that was used.

Summary

Wireless network transmission waves can be seen by outsiders, this possesses many security risks.
WEP is the acronym for Wired Equivalent Privacy. It has security flaws which make it easier to break compared to other security implementations.
WPA is the acronym for Wi-Fi Protected Access. It has security compared to WEP
Intrusion Detection Systems can help detect unauthorized access
A good security policy can help protect a network.