LulzSec dumps what they claim is "final" release, with signoff statement: "50 Days of Lulz"

Discuss

68 Responses to “LulzSec dumps what they claim is "final" release, with signoff statement: "50 Days of Lulz"”

  1. Mantissa128 says:

    Oh God. My heart is broken. I can’t believe this.

    Today is a bittersweet day. Gentlelizards, I salute you.

    [single manly tear]

  2. Anonymous says:

    best signoff letter ever!. Even has a reference to Hitler liking cats… gold!

  3. Anonymous says:

    Of course they are going dark. The FBI and Scotland Yard are hot on their heels and many of them will be sleeping rough for the next few months on friend’s couches and supporters spare rooms. The guys who wrote Stuxnet are not going to have that many problems finding these guys. And anyone who thinks a 19-year-old kid is going to adopt the mafia code of silence is kidding themselves…

    • Cowicide says:

      Of course they are going dark. The FBI and Scotland Yard are hot on their heels and many of them will be sleeping rough for the next few months on friend’s couches and supporters spare rooms. The guys who wrote Stuxnet are not going to have that many problems finding these guys.

      That’s assuming some of the folks who wrote Stuxnet aren’t a part of LulzSec, isn’t it?

      ^_^

  4. Lobster says:

    Incredible. They seem completely, totally unaware of how much damage they’ve done to literally MILLIONS of totally innocent people. “Ha ha, we stole your identity and put it on the internet for anyone to abuse, isn’t that funny? Let’s laugh at how funny that is LULZ LULZ LULZ.”

    They act like this was all some great big gift and now we’re having our cliched sad parting as they sail off into the sunset with a wink and a smile. They act like we have ANY reason to believe them.

    They aren’t being humble. They’re being massive egotists, pretending that their theft and vandalism is liberation and art.

    They act like it’s never crossed their mind just what would happen if people no longer trusted the internet with any personal information, down to a meager login and password. They don’t seem to realize just how critical that trust is to the global economy.

    Good riddance.

    • petsounds says:

      They act like it’s never crossed their mind just what would happen if people no longer trusted the internet with any personal information, down to a meager login and password. They don’t seem to realize just how critical that trust is to the global economy.

      No…replace “their” and “they” with Entities on the Internet Who Don’t Bother With Good Security, and your statement will be correct.

      The point of LulzSec (besides the lulz) was to point out that from top to bottom, the internet is filled with companies and governments who violated user trust by not caring about security, and to publicly shame them. I’m not sure if the latter was accomplished, but the former certainly was.

      “No one loves the messenger who brings bad news.” — ‘Antigone’, Sophocles

      • Lobster says:

        Oh yeah? They’re just the messenger? So the message is, “if you can’t personally set up the BEST security on the internet AND insist all of the companies you use have the same, you don’t deserve to use the internet and also everyone else can steal your credit card?” They just HAD to dump all that personal information to deliver their “message” of… of what, please tell me, what are we learning here. That corporations are imperfect? It’s not that they WANT to get hacked because trust me, they don’t.

        If a man steals my wallet, the problem isn’t that I wasn’t carrying a gun. It’s that that man stole my wallet. Well LulzSec can’t steal my wallet and pretend they’re just trying to teach me to arm myself, and they certainly can’t expect me to thank them for it. They also aren’t going to teach me not to carry a wallet, because I kind of need that wallet. I’m an adult and I have bills to pay. I’m not a trust-fund teenager living in the basement of daddy’s mansion, playing hacker because I don’t understand that actions have consequences, even when they’re “funny.”

        But don’t let that ruin the view from the soapbox. You might want to step down and check your recent credit card transactions at some point, if you, y’know, care about that kind of thing.

        • wrecksdart says:

          I agree with the Lulz of a little chaos here and there, but I have to take umbrage with their hacking of the Navy site shown above. It’s the Navy’s job advertisement website, so what Lulz has done is screw with the possibility of people finding work. Lay off hacking jobs boards–I’m sure there are juicier candidates elsewhere who deserve to be messed with.

          • Cowicide says:

            Navy site shown above. It’s the Navy’s job advertisement website, so what Lulz has done is screw with the possibility of people finding work

            A large part of the military isn’t “work”. It’s welfare queens living off the backs of those of us who really are being productive members of our communities and society at large. They’re “working” to enable murderous, profit-taking ventures that benefit already obscenely rich corporatists who manipulate the populace into endless war (profits).

            You’re in the military? Get a real job, welfare queen. If you’re not a whistleblower, then you’re just a part of the wicked waste of our tax dollars. This is the information age, so ignorance is no excuse. Educate yourself or continue to fight for the enemy of the American people and the world. Our military has been corrupted at the top by corporatists that put Lockheed Martin profits over the American public.

            You want to REALLY save Americans? How about these 40,000 plus Americans that die EVERY YEAR because of the corporatists that spread LIES every day that keep Americans in the dark about single payer systems? You want to be a REAL HERO that SAVES LIVES? Then quit profiting off of misery, waste and LIES.

            Or just quit fooling yourself and admit what you are. A waste.

          • teapot says:

            +1 * ∞

            Lulz are good. As Rob pointed out, lulzsec are kindly providing evidence that many major corporations are doing sweet f/a to protect our information. Would you rather such a shocking reality reveal itself in a way that publicly shames the organisation involved and allows us to know there’s been a breach, or to not be revealed at all and just live in ignorant bliss while our info is in the hands of god-knows-who?

            Also, I notice that the original torrent link on TPB has been taken down and another one (which seems to be much smaller) has been upped instead? In any case Google Cache wins the day again because you can’t kill a torrent that people want to download:
            http://webcache.googleusercontent.com/search?q=cache:DgO_-HAW6noJ:thepiratebay.org/torrent/6495523/50_Days_of_Lulz+%2250+Days+of+Lulz%22&cd=1&hl=en&ct=clnk&gl=au&client=firefox-a&source=www.google.com.au

            Also there does seem to be one trojan in the package, but it allegedly comes from the AT&T internal data. Do you think this is just an oopsie by someone at AT&T, or is this a sneaky attempt at adding members to a botnet?
            http://img714.imageshack.us/img714/1232/atttrojan.jpg

          • Cowicide says:

            Also there does seem to be one trojan in the package, but it allegedly comes from the AT&T internal data. Do you think this is just an oopsie by someone at AT&T, or is this a sneaky attempt at adding members to a botnet?

            Hmm, that might very well be a false positive from AVG, I haven’t looked at it personally though.

            http://forums.malwarebytes.org/index.php?showtopic=6873

          • Cowicide says:

            Also there does seem to be one trojan in the package, but it allegedly comes from the AT&T internal data. Do you think this is just an oopsie by someone at AT&T, or is this a sneaky attempt at adding members to a botnet?

            Update:

            Ok, I see… it looks like it was real malware, but not intentionally put in there by LulzSec and a new torrent minus the malware has been added. As you suggested it was probably “just an oopsie by someone at AT&T”.

            http://news.softpedia.com/news/ThePirateBay-Deletes-LulzSec-s-Last-Torrent-over-Malware-208391.shtml

          • travtastic says:

            Oh, darn!

        • petsounds says:

          If a man steals my wallet, the problem isn’t that I wasn’t carrying a gun. It’s that that man stole my wallet.

          Well, I suppose that depends upon your philosophical and political point-of-views about humanity and society. Maybe you aren’t carrying a gun, but if there isn’t some force keeping order in a society, things tend to go all Wild West and wallets tend to get stolen.

          What LulzSec was trying to point out is that people believe these companies have guns protecting our wallets. But they were revealing these guns to be toys.

          Is demanding that every site have hardened security reasonable? Probably not. But we need to think about how to resolve this issue. I think we need to move to a system where individuals are empowered to keep their credentials, instead of being stored in 50,000 database servers. Minimize the attack vectors and harden the shit out of the ones which remain.

    • PMcGorrill says:

      The gift, besides the epic lulz, is the knowledge that you SHOULDN’T trust the internet with personal information because the internet isn’t secure.
      There is no “good riddance” here because lulzsec was never the problem. The problem was that there was not enough preventing them from doing what they did. And there still isn’t, and future hackers might be working in secret for profit or power instead of relatively harmless lulz.
      I mean, yeah, shame on them, but that only works the first time.

  5. knoxblox says:

    Syndrome: Oh, ho ho! You sly dog! You got me monologuing! I can’t believe it…

    • Finnagain says:

      ” if people no longer trusted the internet with any personal information, down to a meager login and password.”

      Are you saying that you do? I think that you have cleverly missed the point. Wake up!

  6. p. observer says:

    i did learn something for this. i learned that even though i’ve been in 3 databreaches so far and not a single account has been compromised. Isn’t that fascinating

  7. Rob Beschizza says:

    The excuse that they expose bad practices sounds superficial at first blush, but it really is the point as far as everyday people’s personal security is concerned. If Lulzsec released your information, it means that the same information was already quietly available to any criminals with the same skills and tools Lulzsec has.

  8. Anonymous says:

    For enthusiasts to share “50 Days of Lulz” release on FB, use:

    http://dazzlepod.com/redirect_anywhere/290f175a77b7ab0e7a28bb364e0accd2/

  9. poryorick says:

    http://www.washingtonpost.com/business/technology/please-hacker-dont-hurt-us-the-medias-coverage-of-lulzsec-has-been-cowardly-and-pathetic/2011/06/26/AGHIFHmH_story_2.html

    This article is right on. The fawning praise for (or at least uncritical commentary on) shitty behavior that’s occurred here lately is disappointing. -3 Respect.

  10. Church says:

    Hit and run. Classic guerilla tactics.

    Good on ‘em. Anyone who thinks they were the first to exploit these holes is kidding themselves.

  11. EarthtoGeoff says:

    “We say of LulzSec that they have gone on a journey into that land where we walk without footprints.”

  12. Manooshi says:

    Arrests are starting to be made of some of the Zombie-bots across the globe. It was only a matter of time for this “crew of six” to be caught and crucified. It’s good they jumped ship now.

    Peace and may the force be with you!

  13. querent says:

    Right on! Please let it be true that you’re disbanding now! Balls like solid brass suns!

    FARE THEE WELL!!!!!

  14. Anonymous says:

    Here’s why they’re going dark: The A-Team:

    http://pastebin.com/raw.php?i=iVujX4TR

    • JProffitt71 says:

      Oh dear, that was simply.. brutal. Despite myself I can’t help feeling bad for this sad little bunch. However, this does give me bit of hope for a real group to take over and do some real hacktivism.

    • Mantissa128 says:

      I think this has already been discredited. That said, if any of it is true we should know within days. You can always go to anonops IRC and ask them, yourselves.

      The funny theme I see in this thread is the disparaging references to them being teenagers. Why would you think that? Because only teenagers would hack?

      What I find interesting is that Sony sacked a group of security folk just before Sony got whacked. And you know, they weren’t teenagers.

  15. voiceinthedistance says:

    My sources tell me that several of them had their allowances drastically slashed, and had to resort to getting summer jobs at Orange Julius in the food court at the local mall. With their skilz, I’m sure they will be drawing larger than normal checks once the hack into the Orange Julius command center and monkey with the payroll system. I’m sure that they will be back before too long.

  16. BungaDunga says:

    I’m going to call this “getting out while they’re ahead.” Probably the most sane thing they’ve done so far.

  17. roboton says:

    “…And today is the day you will always remember as the day you ALMOST caught Jack Sparrow!”

  18. Anonymous says:

    Searchable list of the leaked accounts at http://dazzlepod.com/lulzsec/final/

  19. Anonymous says:

    Perhaps they’re shutting down because their parents are sending them off to summer camp.

  20. Freek says:

    It seems like they pissed off the wrong people:

    http://www.gamemarshal.com/features/20110622113313/lulzsec-hacked-by-rival-hackers.html

    And now the heavy hitters of the hacking scene seem to want them gone.
    LuzSec getting hacked themselfs makes them look kinda silly.

    • Anonymous says:

      I’m not sure that the heavy hitters you refer to are any more serious or mature than the LulzSec hackers. They are probably just similar young guys holed up in their bedrooms, not putting out the garbage despite their Moms telling hem to, like a million times. Without wanting to build these guys up, this might be the gunfighters curse. You make a name for yourself and other gunfighters want to take you on to inherit your standing. I’m not saying that these guys are romantic anti-heroes (neither were the real old West gunfighters). This seems like a battle between immature egos rather than Clint Eastwood slapping down the young guns.

  21. rebdav says:

    Are we reaching the diminishing returns phase of 2011 hacking?
    Wikileaks combined with one angry guy in Tunisia self immolating acted as a dynamite cap in a pile of explosives and tore down several reasonably stable middle eastern governments.
    What type of release now would activate an angry population with enough distress to feel radical action is appropriate because they already have nothing to loose. Will Greece or somewhere else in the west reach this point anytime soon?
    I am very cynical anymore and between world politics and the financial markets have trouble determining which infotainment is ‘wag the dog’ and what is real or unintended consequence and what is just manipulation.

  22. allen says:

    Lulzec used simple, non-sophisticated techniques to penetrate reputable sites, then released user info from them. The lesson we should take from this isn’t that they were elite masterminds- it’s that the we are allocating disproportionate trust to sites on the internet.

    Hopefully corporations and governments will either learn to be more secure from this, or treat those sites as insecure. Either way works.

    Hopefully INDIVIDUALS like you and I will learn to use separate passwords for separate sites (which will probably require a tool like onepass or password safe).

    If the world were a really nice place, we wouldn’t need to take these measures. We wouldn’t need passwords at all. But it’s not, and it wasn’t before lulzec showed up. The fact of the matter was that lulzec just did what people had been doing for years- they were just nice enough to tweet about it and make our lax standards publicly uncomfortable.

  23. William George says:

    I’ll only be impressed with any group of hacktivists once I see the news that they’ve bankrupted the owners of Goldman Sachs.

  24. awjtawjt says:

    From the beginning, I thought they were low hanging fruit going after low hanging fruit. C’mon: unsecured sql db’s? That’s so 1999. Websites running that stuff were small explosions waiting to happen. Lulzsec were the Sarah Palins of hacking. Good riddance is too strong of a statement, because they were irrelevant in the first place.

  25. Raven says:

    Lulzsec have annoyed real hackers with their antics. I am pretty sure it is not law enforcement that has scared them into disbanding.

  26. Tatsuma says:

    Did you guys see this Tony Blair release? Supposed to be his address book.

    http://pastebin.com/raw.php?i=mn6Dhgcd

  27. Anonymous says:

    EA didn’t admit they got hit for days.

  28. Cowicide says:

    I’m not saying that these guys are romantic anti-heroes (neither were the real old West gunfighters)

    http://en.wikipedia.org/wiki/Billy_the_kid#Personality_traits_according_to_first-hand_accounts

  29. lightswitch says:

    Weird, if in fact they really are shutting down operations. Wouldn’t be surprised if it’s just a joke. If it is in earnest, how likely is it that it’s due to jester posting that stuff about their CloudFlare configuration? You have to admit the timing of it makes it appear that way.

  30. Anonymous says:

    HACK THE PLANET

  31. Teller says:

    After the high-gloss they’ve been getting, they won’t disappear for long, if at all.

    • TabulaRasa says:

      NOOOOOOOOOOOOOOOOOOO!

      @ Teller
      I hope so. Even if they weren’t saints, they gave me hope that some of the “dirty laundry” kept secret would been dragged into light by them.

      Farewell, Lulzsec. I’ll miss you. And I’ll never give up hope to see you back again.

      YARRRR!

  32. Anonymous says:

    Makes sense to keep it brief. They must surely know the risk they are taking with being so high profile. They have many of the worlds law enforcement agencies after them. Would only be a matter of time until they got caught. Best to burn the ships now while the burning is good.

  33. katewishing says:

    Jester is a joke. Anyone even remotely competent could have found the IP address of LulzSec’s server. CloudFlare isn’t meant to hide the IP. You can even e-mail their abuse team and ask for it.

  34. andygates says:

    Lulzsec getting hacked doesn’t make them silly, it underscores their exact message. Nothing is secure. Everything is visible to someone.

    It might even be the punchline.

  35. franko says:

    sounds like the heat got to hot for them, and they are bailing before they get caught.

  36. arborman says:

    Leaving aside the right and wrong of what they have done, I can’t help but love the pure SF concept of a shadowy gang of hackers forming a plan, wreaking havoc and then disappearing, for reasons known only to themselves. I particularly love that they just came out of nowhere, and have twisted a massive number of legal, security and political people into knots.

    That said, we have heard of many celebrities retiring, then having comeback concerts over and over again.

  37. asuffield says:

    Jester is a joke. Anyone even remotely competent could have found the IP address of LulzSec’s server. CloudFlare isn’t meant to hide the IP. You can even e-mail their abuse team and ask for it.

    Sure, and it would just lead you to nobody. They aren’t stupid, they’ll be layered through Tor and similar services.

    This kind of security can’t be maintained for long – the government thugs will break into one datacentre after another and steal all the hardware (including that of anybody who was in a nearby rack) until they get to the end of the trail. Which is exactly why you don’t want to keep it up for long.

    • bjohndick says:

      My fantasy was that they would use that as a tactic to takedown somebody.
      Get some rack space right near a target, set it up as bait, and if the FBI seized the surrounding servers ineptly as before they’d be doing the takedown themselves.

    • Cowicide says:

      … until they get to the end of the trail. Which is exactly why you don’t want to keep it up for long.

      Hahaha…

      The end of the of trail can be a republican politician one doesn’t favor. One can pick up targeted wifi signals from afar with some very simple methods (and there’s much more powerful solutions than that, BTW), crack the WPA/WPA2 pre-shared key (or cut through WEP like butter) and have at it.

      And, if one is lucky, the overzealous FBI will blow up the house you’ve targeted and the republican will be burned to death.

  38. deckard68 says:

    Seems like just last week when some folks were saying that arresting a few people would not help deter the crimes. Because it was.

  39. mneptok says:

    I call dibs on naming my first nerdcore hip-hop album A Folder Called Booty.

  40. erissian says:

    And now anybody in the scene with an ounce of credibility can make life suddenly difficult for up to six people.

  41. Anonymous says:

    Ubuntu! (re:screenshot)

  42. Anonymous says:

    This might have been the best move they’ve done. Not because I don’t like them or think they’re better off gone. Quite the opposite!

    But by leaving, they obviously stop making tracks that entities like the FBI could sniff.
    And they immortalize the concept of the Lulzboat, to be sailed in the future by whatever group that thinks itself capable of keeping the “mythology” alive, keeping certain characteristics and ideals intact. This also keeps it extremely amorphous and vaporous. And I don’t care what amde them do it.

    One thing’s for sure: they’ve created a platform.

    I’m also surprised by how humble the farewell message sounds. Why couldn’t they be like that all the way? :P If only they knew that being like this would get more people on their side.

    • ZippySpincycle says:

      And they immortalize the concept of the Lulzboat, to be sailed in the future by whatever group that thinks itself capable of keeping the “mythology” alive…

      So…they’re the Dread Pirate Roberts?

  43. MonsterMan says:

    Good riddence. Punks.

  44. Anonymous says:

    possibly viruses

  45. semiotix says:

    Funny how everything about the whole affaire l’Ulz sec leads us back to things we already knew about human nature. I’ll give them this: it’s pretty good performance art, and it even has a moral, although probably not the one they meant.

  46. fraac says:

    Why publicise these teens? They’re the kind of hackers we used to be embarrassed by.

Leave a Reply