The Accidental Terrorist – Anonymous’ Stooges Stage Attacks

Numerous people may unwittingly be assisting Anonymous in its current campaign against the US Department of Justice (DoJ) and various Websites owned by film and music tycoons.

The hacker group has been peppering the sites with DDoS attacks to protest at the downing of the Megaupload file storage site. An international crimebusting team, headed by the DoJ’s Federal Bureau of Investigation (FBI), took over the Megaupload site and arrested many of its organisers.

Expect the unexpected

Anonymous posted the following message: “We Anonymous are launching our largest attack ever on government and music industry sites. Lulz. The FBI didn’t think they would get away with this did they? They should have expected us.”

What nobody expected is the means by which the attacks are being mounted. Apart from Anonymous’ usual tactic of botnet Command and Control (C&C) networks firing spurious data at the targeted servers, the group has found a simple way of covertly enrolling other attackers.

According to Graham Clueley, a Sophos’ Naked Security blogger and senior technology consultant, the group has been relying on natural curiosity to entrap “helpers”. By seeding Twitter with links in tweets, in a number of languages, the inquisitive reader is led to comments on the Pastehtml.com Website. The unsuspecting visitors may not realise it but they have been tricked into allowing their PCs to be used as DDoS bots.

Visitors who arrive at the site with JavaScript enabled will instantly be hit with a script that ties their machine into the botnet. No user interaction is involved and the script runs without the user being aware. The computer is then forced to flood a target of Anonymous’ choosing with network traffic.

Current targets appear to be the Recording Industry Association of America (RIAA) and Universal Music Group which have ceased to operate, but it has also aimed its guns at the DoJ site and several other digital rights supporters. A new assault on Whitehouse.gov has also been released.

A wall of noise

The trick is aimed at obscuring the Anonymous group’s activities following several arrests of key members last year. Anyone arrested for the current attacks will claim to be unwitting stooges – an argument that has succeeded in the past.

In an attempt to sue various habitual music downloaders, the music industry convinced the courts that IP addresses never lie and that the owners of these addresses must be the guilty party. In May last year, a US judge ruled that an IP address did not equate to a person and the RIAA cases started to fall apart.

At the end of the year the RIAA was embarrassed when its IP addresses were found to be cruising illegal download sites and the organisation had to use the “it was not me, it was a spoofer” defence.

The problem for the involuntary attackers is that DDoS attacks on US government sites are being viewed as terrorist attacks. Anyone caught doing so is liable to prosecution, even UK citizens are likely to be extradited. The accidental terrorist argument may not prove to be sufficient defence.

Eric Doyle, ChannelBiz

Eric is a veteran British tech journalist, currently editing ChannelBiz for NetMediaEurope. With expertise in security, the channel, and Britain's startup culture, through his TechBritannia initiative

View Comments

Recent Posts

The Sustainability of AI

While AI promises unparalleled efficiency, productivity, and innovation, questions regarding its environmental impact loom large.…

2 hours ago

Trump’s Truth Social Makes Successful Market Debut

Shares in Donald Trump’s social media company rose about 16 percent after first day of…

2 hours ago

Dutch PM Raises Cyber Espionage Case With China’s Xi

Beijing visit sees Dutch Prime Minister Mark Rutte discuss cyber espionage incident with Chinese President…

3 hours ago

Vodafone Germany Confirms 2,000 Job Losses, Amid European Restructuring

More downsizing at Vodafone after German operation announces 2,000 jobs will be axed, as automation…

19 hours ago

AI Poses ‘Jobs Apocalypse’, Warns Report

IPPR report warns AI could remove almost 8 million jobs in the United Kingdom, with…

20 hours ago

Europe’s Longest Hyperloop Test Track Opens

European Hyperloop Center in the Netherlands seeks to advance futuristic transport technology, despite US setbacks

21 hours ago