milw0rm
Formation | 1998 |
---|---|
Membership | JF, Keystroke, ExtreemUK, savec0re, and VeNoMouS |
Milw0rm is a group of
The BARC attack generated heated debate on the security of information in a world prevalent with countries developing nuclear weapons and the information necessary to do so, the ethics of "hacker activists" or "hacktivists," and the importance of advanced security measures in a modern world filled with people willing and able to break into insecure international websites.
The exploit site milw0rm.com and str0ke are unaffiliated with the milw0rm hacker group.
Members
Little is known about the members of milw0rm, which is typical of hacking groups, which often conceal members' identities to avoid prosecution.[7] The international hacking team "united only by the Internet"[citation needed][8] was composed of teenagers[9] who went by the aliases of JF, Keystroke, ExtreemUK, savec0re, and VeNoMouS.[10] VeNoMouS, 18, hailed from New Zealand, ExtreemUK and JF, 18, from England, Keystroke, 16, from the US and Savec0re, 17, from the Netherlands.
JF went on to achieve a modicum of notoriety when MTV "hacked" its own website intentionally and graffitied the words "JF Was Here" across the page,[11] at the same time that JF was under investigation for the milw0rm attacks by Scotland Yard.[12] Hundreds of pages hosted on MTV.com sported the new JF logo, including one page that read, "JF was here, greets to milw0rm".[13] MTV later confirmed that the alleged JF "hack" was a publicity stunt to promote the appearance of a commentator named Johnny Fame at the 1998 MTV Video Music Awards.[12] Many were puzzled by the apparent hack committed by JF since the hacker was "known for relatively high ethical standards."[12]
VeNoMouS claimed that he learned to crack into systems from Ehud Tenenbaum, an Israeli hacker known as The Analyzer.[14]
BARC attack
On the night of June 3, 1998, the group used a US military
The group of teenagers were from the United States, United Kingdom and New Zealand.[16]
Milw0rm then came forward with the security flaws they exploited in BARC's system, along with some of the thousands of pages of documents they had lifted from the server, concerning India's last five nuclear detonations.
After the attack Keystroke claimed that the breach had taken "13 minutes and 56 seconds" to execute. Though it was later reported that Keystroke meant this as a lighthearted answer. The invasion took careful planning, routing through servers throughout the world from three different continents, and took days to execute.[17]
Attack aftermath
The security breach was first reported by Wired News. JF and VeNoMouS claimed credit by emailing Wired reporter James Glave with documents they had obtained from the BARC servers as proof.[15]
After first denying that any incident had occurred, BARC officials admitted that the center had indeed been hacked and emails had been downloaded. It was reported that the security flaw resulted from "a very normal loophole in Sendmail". Forbes wrote that perhaps up to 100 hackers had followed milw0rm's footsteps into the BARC servers once they were revealed as insecure.[18] The website was shut down while its security was upgraded.[15] BARC officials said that none of the emails contained confidential information, the group did not destroy data, and that the computers they have that contain important data were isolated from the ones broken into.[17]
The milw0rm attack caused other groups to heighten their security to prevent invasion by hackers. The U.S. Army announced, without giving evidence as to why they believed this to be the case, that the hacks might have originated in Turkey.[15]
Later,
The Electronic Disturbance Theater released a statement in support of JF, applauding him for his hacktivism and maintaining that computer break-ins of this sort were not cyber-terrorism as some claim.[21]
Other attacks
One month after the BARC incident, in July 1998, milw0rm hacked the British web hosting company Easyspace, putting their anti-nuclear mushroom cloud message on more than 300 of Easyspace's websites,[22] along with text that read: "This mass takeover goes out to all the people out there who want to see peace in this world."[23]
Wired reported that this incident was perhaps the "largest 'mass hack' ever undertaken."
While scanning a network for weaknesses, members of the group came across EasySpace, a British company which hosted many sites on one server. Along with members of the fellow hacking group Ashtray Lumberjacks,[6] milw0rm had the revised mushroom cloud image and text on all of Easyspace's websites in less than one hour.[23] Vranesevich said that the mass hack was rare in its effect and its intention: the hackers seemed to be more interested in political purposes than exposing computer security flaws.[23]
It was also reported that milw0rm broke into a Turkish nuclear facility in addition to BARC.[26]
See also
References
- ^ "'Hacktivists' of All Persuasions Take Their Struggle to the Web". New York Times. October 31, 1998.
- ^ Milworm Bites BARC outlookindia.com. Retrieved 30 December 2012
- ISBN 0-7619-1330-0.
- ISBN 0-415-24429-3.
- ISBN 0-7637-3536-1.
- ^ a b "E-Guerrillas in the mist". Ottawa Citizen. October 27, 1998.
- ISBN 0-7637-3536-1.
- ProQuest 1787752058– via ProQuest.
- ^ Rashtriya Sahara. India: Sahara India Mass Communication. 1996.
- ISBN 0-7506-7029-0.
- ^ "MTV "hack" backfires". CNet. September 9, 1998. Archived from the original on 2012-11-04.
- ^ a b c "MTV Cries 'Hacked!'". Wired. September 9, 1998.
- ^ "AntiOnline's Editorial Coverage Of The MTV Site "Hack" ?". AntiOnline. September 1998. Archived from the original on 1998-12-05.
- ^ a b "Crackers: We Stole Nuke Data". Wired. June 3, 1998.
- ^ a b c d "India has scary nuke hack". ZDNet. June 5, 1998.
- ISBN 0-9716807-2-8.
- ^ a b "The Eye of the Needle". Rediff. June 9, 1998.
- ^ "Hacking Bhabha". Forbes. November 16, 1998.
- ^ "Do Terrorists Troll the Net?". Wired. November 4, 1998.
- ISBN 0-7645-6959-7.
- ^ "The Electronic Disturbance Theater supports "JF" the young british anti-nuclear hacker". The Electronic Disturbance Theater. July 8, 1998.
- ISBN 0-7506-7029-0.
- ^ a b c d e "Anti-Nuke Cracker Strikes Again". Wired. July 3, 1998.
- ISBN 0-8330-3030-2.
- ^ "Cyberwarriors: Activists and Terrorists Turn to Cyberspace". The Future of War. Summer 2001.
- ^ Defensor Pacis. The Institute. 1999.