LulzSec hack... (Insert most recent target here)

[Patticus]

Bethesda has confirmed it suffered a hacker attack on its websites over the weekend.

The Brink publisher said the hackers "may have gained access to some user names, email addresses, and/or passwords". It advised users change their passwords on all of its sites immediately.

No personal financial information or credit card data was obtained, however.

"Over the past weekend, a hacker group attempted an unlawful intrusion of our websites to gain access to data," Bethesda said in a statement on its website.

"We believe we have taken appropriate action to protect our data against these attacks. While no personal financial information or credit card data was obtained, the hackers may have gained access to some user names, email addresses, and/or passwords. As a precaution, we recommend that all our fans immediately change passwords on all our sites - including our community forums and the statistics site we maintain for Brink players.

"If your username/email address/password is similar to what you use on other sites, we recommend changing the password at those sites as well. As we don't know what further plans the hackers may have, we suggest that you keep an eye out for suspicious emails and account activity.

"We regret any inconvenience that these attacks on us cause for you. These attacks will be evaluated to determine if there are any additional protections we might take that would be prudent."

The hack was the work of Lulz Security – the same hacker group that has attacked Sony and other websites over the last month.

LulzSec warned on Twitter it was taking aim at Bethesda.

"We were going to keep this little treasure chest to ourselves, but it appears the hand has been bitten. Say your prayers, Brink users," the group said over the weekend.

Then, "Big lulz coming up in the near future. Time to show these b****es how it's done. #Brink #Bethesda #ZeniMax"

Defending its attack, LulzSec said: "Snap your minds into a new realm, my friends. We did it because they couldn't stop us - and did it we did, as you'll see. We always deliver."

http://www.eurogamer.net/articles/2011-06-13-publisher-bethesda-confirms-hack-attacks

I would love to know the age demographic of these people, I really would... not to mention what on earth they're trying to achieve, other than being a nuisance and grabbing themselves a guaranteed jail sentence.

They'll be classified as a terrorist organisation like Anonymous at this rate.

[Badnik Mechanic]

Wonderful... now I have to change more passwords.... Great.

Edit: Doesn't help matters that Bethesda's forums are the biggest pile of crap I've seen, so trying to figure out which password I actually used is far from easy.

Edited June 13, 2011 by Hogfather

[Double Agent Motobug]

-__- I for one am tired of hearing about hacking... Seems like they've (or someone has) hacked everything hackable at this point. I wouldn't be surprised to see a tree that has been cut down in the woods with a sign that says "LULZSEC WAS HERE" infront of it.

Edited June 13, 2011 by Aptiva

[Detective Shadzter]

Hack attack: Now Epic Games suffers security breach

Forums and websites affected, says Sweeney

Yet another major games company has suffered at the hands of hackers. Epic Games has admitted to it community that both its websites and forums have been breached.

The Gears Of War dev has now brought its sites back online. It took them down in order to reset passwords. A email from the firm sent out yesterday to it community reads:

Our Epic Games web sites and forums were recently hacked. After some downtime, they're back up and running now.

The hackers may have obtained the email addresses and encrypted passwords of forum users. Plaintext passwords weren't revealed, but it's possible that those passwords could be obtained by a brute-force attack on the encrypted passwords. Therefore, we have reset all passwords. Your new password at the bottom of this message.

The Unreal Developer Network (UDN) hasn't been compromised. Thankfully, none of our web sites ask for, or store, credit card information or other financial data.

We're sorry for the inconvenience, and appreciate everyone's patience as we wrestle our servers back under control.

Tim Sweeney

Founder, Epic Games Inc

The news comes after UK games firm Codemasters' database was hacked for the second time last week. Both Sony and Square Enix have both also suffered at the hands of hackers this year.

http://www.computerandvideogames.com/306836/news/hack-attack-now-epic-games-suffers-security-breach/

Hackers attack Nintendo Europe website

NOE site warns of phishing threat in latest cyber attack

The games industry has been bombarded with cyber attacks since the PlayStation Network outage in May, with Nintendo being the latest victim.

The platform-holder's main European website is warning all that view it of a possible Phishing threat to users. Logging onto the site prompts the following statement:

"We have learnt of a possible phishing threat to users of the European Nintendo website which we are currently investigating. The protection of our customers is our utmost priority and so we have taken the precaution of immediately shutting down some parts of this website until further notice. We would like to reassure you that we do not hold our customer's bank, credit card or address details on the European Nintendo website and so this data is not at risk.

"Phishing is when someone attempts to find out your personal information, such as usernames and passwords, by pretending to be a trustworthy person or company in an electronic communication such as an email or via a website.

"We apologise for any inconvenience this has caused. Please do get in touch with your local Nintendo Customer Services if you have any further concerns."

Nintendo admitted just days before E3 this month that hackers had cracked into one of its US servers, but no user information was stolen.

Nintendo isn't the only one in the crosshairs of dirty hackers this weekend; Epic has confirmed that both its forums and websites have been breached.

The news comes after UK games firm Codemasters' database was hacked for the second time last week. Both Sony and Square Enix have both also suffered at the hands of hackers this year.

http://www.computerandvideogames.com/306856/news/hackers-attack-nintendo-europe-website/

Anonymous hacks Spanish police website following arrests

DDoS attack "an act of peaceful protest on the internet"

The Spanish national police force's website was knocked offline for about an hour yesterday by hacker collective Anonymous.

The group claimed in a statement that the distributed denial of service attack launched on the site was "an act of peaceful protest" in direct response to the arrest of three Spanish men linked to the recent PSN hack.

Spanish authorities said the cause of the outage has not yet been determined.

But Anonymous said: "It has come to our attention that you deemed it necessary to arrest three of our fellow anons, ... which you claim to be the leaders of Anonymous and for their participation in DDoS attacks against various websites...

"First and foremost, DDoSing is an act of peaceful protest on the Internet. The activity is no different than sitting peacefully in front of a shop denying entry. Just as is the case with traditional forms of protest...

"Regardless of how many times you are told, you refuse to understand. There are no leaders of Anonymous. Anonymous is not based on personal distinction...

"Arresting somebody for taking part in a DDoS attack is exactly like arresting somebody for attending a peaceful demonstration in their hometown. Anonymous believes this right to peacefully protest is one of the fundamental pillars of any democracy...

"You have not detained three participants of Anonymous. We have no members and we are not a group of any kind. You have, however, detained three civilians expressing themselves...

"You are providing us with the fuel, but now you must expect the fire."

[ Source: BBC ]

http://www.computerandvideogames.com/306973/news/anonymous-hacks-spanish-police-website-following-arrests/

I hope these hackers are caught and arrested soon. They're doing no-one any favours.

[turbojet]

Umm. I'm sorry, but Spanish police department seems to be an act of "stick it to the man," that Anonymous is known and praised/hated for.

LulzSec can burn though. Fucking trolls.

[Velotix von Skruviktorrius]

I really would... not to mention what on earth they're trying to achieve, other than being a nuisance and grabbing themselves a guaranteed jail sentence.

[turbojet]

I think you'll find that's all they're trying to achieve. That and highlighting companies with poor security compared to ones with decent security. It's all in the name.

It still amuses me that NATO actually considers glorified script kiddies plus the odd actual hacker as a "terrorist group" now.

Edited June 13, 2011 by turbojet

[Nepenthe]

"We just want to highlight bad security and prove a point!" If that's their official statement, they can fuck right off.

As I said before, I have no stake in any of these companies, and even I'm pissed off every time one of these news stories come to light. Ignoring that it's not their jobs to find security holes in networks, they're doing it just to be assholes. Fuck 'em. Catch these guys and lock them up.

[CtW]

I'm starting to get real sick of changing my password on something every other day because this bunch of idiots keep hacking everything. Do they actually think the rest of the internet is on their side? Everyone is tired of putting up with this crap. At least Anonymous had a purpose, whereas these pseudo-Anonymous guys are just causing problems because they're assholes.

I think you'll find that's all they're trying to achieve. That and highlighting companies with poor security compared to ones with decent security. It's all in the name.

[Scar]

These Hackers are complete dipshits.

If they really want to test companies' security, then they should try and get a real job, where they can be paid a shit ton of money.

Doing this kind of hacking is a double edged sword. You can spot weaknesses in a companies security, but then you have that company after you, the government after you and the public (who are getting screwed by the data theft) only hate them even more.

[Yong]

I too am sick of these self-righteous assholes claiming to be making a point. It's like someone took a sledgehammer to the front door of my house to prove my house can be broken into. You still broke into my house without permission and you would go to jail for that. This is no different.

[Candescence]

It's funny, if companies actually hired hackers to find security holes for them, this sort of shit wouldn't be happening. I mean, Jesus, you'd think it would actually be a SMART idea. The only way you're gonna improve your security against hackers is to get hackers on your payroll to test the security like actual hackers would.

If they really want to test companies' security, then they should try and get a real job, where they can be paid a shit ton of money.

Edited June 13, 2011 by Masaru Daimon

[Saint Nathan]

"We just want to highlight bad security and prove a point!"

wasn't this the plan of the bad guy from live free die hard

i'm 99% certain it was

[Candescence]

wasn't this the plan of the bad guy from live free die hard

i'm 99% certain it was

Not quite. The villain of that film TRIED to point out a major security flaw, and got fired for it, and the entire movie is basically him wrecking shit with the same vulnerability because he's just that petty. LulzSec would call him an asshole.

[Saint Nathan]

Not quite. The villain of that film TRIED to point out a major security flaw, and got fired for it, and the entire movie is basically him wrecking shit with the same vulnerability because he's just that petty. LulzSec would call him an asshole.

i thought it was because he wanted to point out that he was right about the flaw

and i guess he wanted some money or something??? i dunno the movie never really went into that much

and then he kidnaps bruce willis' daughter so bruce willis has this awesome part where he's in a semi-truck running from this fighter jet that's trying to kill him

and then he captures bruce and sticks his gun in bruce's bullet wound but then bruce shoots himself and the bullet travels through and hits the guy from behind

and then bruce gets his daughter back and like saves the day again

what i'm trying to say is that i think these guys are going to get shot by bruce willis

[CtW]

Greetings Internets,

This is a story all about how we made Bethesda Softworks, ZeniMax

Media, and everything they own, our bitch for life.

As you should know, The Lulz Boat stores vast amounts of booty;

much of this booty we don't release as it's simply too shiny and/or

delicious. As of late, certain inferior sailing boats have discovered

flaws in Brink (brinkthegame.com), thinking themselves exciting and new.

Too late. The Lulz Boat controls this ocean, chumps.

Some weeks ago, we smashed into Brink with our heavy artillery Lulz

Cannons and decided to switch to ninja mode. From our LFI entry point,

we acquired command execution via local file inclusion of enemy fleet

Apache vessel. We then found that the HTTPD had SSH auth keys, which

let our ship SSH into other servers. See where this is going?

We then switched to root ammunition rounds.

And we rooted... and rooted... and rooted...

After mapping their internal network and thoroughly pillaging all of

their servers, we grabbed all their source code and database passwords,

which we proceeded to shift silently back to our storage deck.

Please find enclosed everything we took, excluding one thing -

200,000+ Brink users. We actually like this company and would

like for them to speed up the production of Skyrim, so we'll

give them one less thing to worry about. You're welcome!

Please keep making awesome games, guys, and you should

totally add an official LulzSec top hat to new releases.

But anyway, bwahahaha... >:]

The saga continues!

[Carbo]

Bethesda Internal Info is on TPB now.

Edited June 13, 2011 by Carbo

[TheGerkuman]

So what, they're trying to force Brink to shutdown just to get Skyrim out faster?

These guys obviously know jack shit about video game production.

Wait, no. They're saying that they won't give out the user details to the public. I would call that nice of them, but hacking isn't nice in the first place.

Edited June 13, 2011 by Gerkuman

[Carbo]

Not Video Games related exactly but since I posted it in the status updates;

Who would've guessed that government employees enjoy porn?

Last week was a big week for LulzSec. They hacked Nintendo. They hacked the Sony Computer Entertainment Developer Network. This week is starting off even bigger: The group managed to hack adult website pron.com and nabbed the login information for more than 25,000 accounts. But this isn't the biggest part of the story; instead, the craziest bit is about who LulzSec discovered was logging into the site.

It turns out that a number of accounts on pron.com use .mil and .gov email addresses for login information. Not only that, but it was discovered that 55 administrators and webmasters from other porn websites have accounts with pron.

LulzSec has listed all the email/password combinations they plundered over the weekend, and is offering a suggestion for what should be done with this information. Basically, the group is encouraging people to try the login info on Facebook and, if any of it works, to tell all the friends about said account holder's porn membership.

OK, on one hand: People need to learn what is (and what is not) an appropriate use of taxpayer funds. On the other hand? Encouraging the internet to hack people's Facebook accounts and shame them for having an account with an adult website that couldn't keep their information secure is beyond ridiculous. It's petty and spiteful.

[Old dead account]

Hack the Sega Forums next! X)

What hasn't been hacked now?

[Yong]

Nice that they're being all casual about this like it's all just a game and that they're doing nothing wrong. Then again I don't know who is dumber here, these assholes or the police who haven't made any arrests yet.

[Scar]

It looks like LulzSec is trying to get everyone against them.

They pretty much have all the goddamn Internet and several Governments after them. If they leave even a scrap of evidence that can trace back to them, they are going to be brutally butchered.

I seriously hope that happens. The self-entitled pricks think they're doing nothing wrong, when they are in fact intruding in other peoples' private affairs, and are holding their sensitive information.

This will eventually lead to a proverbial bloodbath, and I will be there to watch.

[Carbo]

I don't really care about what punishment that gets imposed on them. I just hope someone stops them before this becomes all more of an incentive to lock up and impose internet specific security bills even further.

[Velotix von Skruviktorrius]

Relevant counterargument supporting LulzSec.

Significant because it's written by actual security professionals.

I have to agree with the viewpoint on a pragmatic level, although ideally I wish company execs would actually listen to competent security professionals about, y'know, security.

[Candescence]

Relevant counterargument supporting LulzSec.

Significant because it's written by actual security professionals.

I have to agree with the viewpoint on a pragmatic level, although ideally I wish company execs would actually listen to competent security professionals about, y'know, security.

THIS. Good grief, this.

If it takes a bunch of hackers breaking companies' security systems for the lulz to make said companies wake up and smell the ashes, said companies deserve no sympathy, nor can I possibly call them 'victims' with a straight face.