|
The loose-knit hacking movement 'Anonymous' claimed Sunday to have stolen thousands of credit card numbers and other personal information belonging to clients of US-based security think tank Stratfor.
One hacker said the goal was to pilfer funds from individuals' accounts to give away as Christmas donations, and some victims confirmed unauthorized transactions linked to their credit cards.
Anonymous boasted of stealing Stratfor's confidential client list, which includes entities ranging from Apple Inc. to the US Air Force to the Miami Police Department, and mining it for more than 4,000 credit card numbers, passwords and home addresses.
Austin, Texas-based Stratfor provides political, economic and military analysis to help clients reduce risk, according to a description on its YouTube page.
It charges subscribers for its reports and analysis, delivered through the web, emails and videos.
The company's main website was down, with a banner saying the 'site is currently undergoing maintenance.'
Proprietary information about the companies and government agencies that subscribe to Stratfor's newsletters did not apear to be at any significant risk, however, with the main threat posed to individual employees who had subscribed.
'Not so private and secret anymore?' Anonymous taunted in a message on Twitter, promising that the attack on Stratfor was just the beginning of a Christmas-inspired assault on a long list of targets.
Anonymous said the client list it had already posted was a small slice of the 200 gigabytes worth of plunder it stole from Stratfor and promised more leaks.
It said it was able to get the credit card details in part because Stratfor didn't bother encrypting them — an easy-to-avoid blunder which, if true, would be a major embarrassment for any security-related company.
Fred Burton, Stratfor's vice president of intelligence, said the company had reported the intrusion to law enforcement and was working with them on the investigation.
Stratfor has protections in place meant to prevent such attacks, he said.
'But I think the hackers live in this kind of world where once they fixate on you or try to attack you it's extraordinarily difficult to defend against,' Burton said.
(Read by Emily Cheng. Emily Cheng is a journalist at the China Daily Website.)
點(diǎn)擊查看更多雙語(yǔ)新聞
(Agencies)
|
組織松散的黑客團(tuán)體“匿名者”上周日宣稱(chēng)成功侵入美國(guó)安全智庫(kù)戰(zhàn)略預(yù)測(cè)公司數(shù)據(jù)庫(kù)�����,竊取數(shù)千份信用卡號(hào)碼及其他個(gè)人信息�����。
一名黑客說(shuō)���,此舉是為了偷竊客戶(hù)賬戶(hù)中的資金,用作圣誕節(jié)捐贈(zèng)��。一些受害人證實(shí)信用卡賬戶(hù)出現(xiàn)不明轉(zhuǎn)賬�。
“匿名者”宣稱(chēng)獲取了戰(zhàn)略預(yù)測(cè)公司的保密客戶(hù)清單,所列客戶(hù)包括蘋(píng)果公司���、美國(guó)空軍�����、邁阿密警察局����,失竊資料包括信用卡賬號(hào)���、密碼和住址�����,總共超過(guò)四千份���。
根據(jù)其在YouTube視頻網(wǎng)站主頁(yè)上的描述,戰(zhàn)略預(yù)測(cè)公司總部位于得克薩斯州奧斯汀����,提供政治、經(jīng)濟(jì)和軍事分析�,幫助客戶(hù)減小風(fēng)險(xiǎn)。
該公司經(jīng)互聯(lián)網(wǎng)��、電子郵件和視頻向客戶(hù)傳遞報(bào)告和分析���,收取費(fèi)用����。
這家機(jī)構(gòu)的網(wǎng)站癱瘓�����,首頁(yè)橫幅解釋是“網(wǎng)站正在維護(hù)”�����。
但訂閱該公司郵件的公司和政府機(jī)構(gòu)的專(zhuān)有信息似乎沒(méi)有受到嚴(yán)重威脅,主要風(fēng)險(xiǎn)集中在訂閱了郵件的個(gè)人員工客戶(hù)��。
“匿名者”在一條推文中嘲諷地說(shuō)道:“再也沒(méi)那么私人和秘密了吧��?”“匿名者”宣稱(chēng)針對(duì)“戰(zhàn)略預(yù)測(cè)”公司的這次以圣誕節(jié)為靈感的襲擊只是開(kāi)始�����,公布的也只是部分客戶(hù)名單�����。
“匿名者”表示�����,已經(jīng)公布的客戶(hù)名單只是該團(tuán)體從戰(zhàn)略預(yù)測(cè)公司竊取的2000億字節(jié)數(shù)據(jù)資料的冰山一角����,這些資料非常值得偷竊,而且還宣稱(chēng)會(huì)繼續(xù)泄漏資料���。
“匿名者”稱(chēng)�����,他們能獲取客戶(hù)信用卡信息部分是因?yàn)閼?zhàn)略預(yù)測(cè)公司沒(méi)有對(duì)信息加密�。如果這一說(shuō)法屬實(shí)���,對(duì)任何一家與安全相關(guān)的公司而言��,這都會(huì)非常尷尬����,因?yàn)檫@是最容易避免的疏漏���。
戰(zhàn)略預(yù)測(cè)公司副總裁弗雷德?伯頓說(shuō)���,公司已經(jīng)報(bào)告了這起違法案件,將與執(zhí)法部門(mén)聯(lián)手開(kāi)展調(diào)查�����。
他表示�����,戰(zhàn)略預(yù)測(cè)公司有旨在預(yù)防類(lèi)似攻擊的適當(dāng)?shù)谋Wo(hù)措施。
伯頓說(shuō):“但我認(rèn)為�����,在當(dāng)今世界��,只要被黑客盯上�����,或者只要他們想要攻擊你��,防護(hù)就異常艱難�。”
相關(guān)閱讀
好萊塢明星被黑客盯上 私人電話(huà)和裸照遭曝光
美國(guó)政府招黑客����,你來(lái)嗎?
美國(guó)四分之一黑客為FBI線人
黑客實(shí)施報(bào)復(fù)行動(dòng)聲援維基解密
維基解密曝光密件 美稱(chēng)將展開(kāi)刑事調(diào)查
黑客令A(yù)TM機(jī)自動(dòng)吐鈔
(中國(guó)日?qǐng)?bào)網(wǎng)英語(yǔ)點(diǎn)津 Julie 編輯:陳丹妮)
|
