Did the FBI Steer LulzSec Hacking Spree?

Joshua Kopstein

June 6, 2014 at 5:45 AM

Did the FBI Steer LulzSec Hacking Spree?

When the hacktivist Jeremy Hammond was sentenced last year after a string of high-profile computer crimes, he left the court with a clear message: This isn't over.

Hammond, 29 years old, had pleaded guilty for his role in the now-infamous 2011 “LulzXmas” hack of Stratfor Global Intelligence Service, a U.S. security contractor whose clients included employees of defense contractors, NATO, and the National Security Agency, among others. The breach resulted in the leak of millions of internal emails, revealing surveillance of peaceful political activist groups as well as the theft of around 60,000 credit cards belonging to the firm’s customers. Unbeknownst to Hammond at the time, the hacker directing and instigating this and many other attacks—Hector Xavier Monsegur, aka “Sabu”—was actually an FBI informant.

READ MORE How Gay Marriage Was Won

In his final comments in court, Hammond said the Anonymous kingpin-turned-snitch had orchestrated the infiltration of Stratfor, as well as attacks on government websites belonging to Turkey, Syria, Brazil, Iran, Pakistan, and dozens more. The FBI sting not only caught Hammond, but duped him into depositing data stolen from foreign governments directly into a server controlled by the FBI. “The government celebrates my conviction and imprisonment, hoping that it will close the door on the full story,” Hammond told the court last November. “I took responsibility for my actions by pleading guilty, but when will the government be made to answer for its crimes?”

That question is being raised again in light of previously unseen chat logs uncovered by Motherboard and the Daily Dot. The chats corroborate Hammond’s version of the events, as well as the statements of another mysterious hacker who was instrumental to the breach. It shows that the FBI, contrary to its previous statements, was fully aware when hackers first got access to Stratfor’s systems, and stood idly by as they wreaked havoc on various targets for the next several months.

According to the newly revealed chat logs, on Dec. 4, 2011, a hacker using the handle “Hyrriiya” first told Monsegur, then a respected leader figure within the Anonymous offshoot LulzSec, about a vulnerability granting access to some of Stratfor’s databases. “That’s perfect for #antisec,” responded Monsegur, referring to the “AntiSec” hacking group he had set up within Anonymous after becoming an FBI informant. Monsegur then gave the access to Hammond, along with an unsolicited sample of credit-card information from Stratfor’s database. A week later, Hammond had unlocked the rest of Stratfor’s network, eventually culminating in the LulzXmas hack on Dec. 24 in which tens of thousands of credit-card numbers were stolen and used to make fraudulent charges to various charities and nonprofits.

More than a month later, on Jan. 11, 2012, Stratfor Chairman George Friedman issued a statement saying that the FBI had told them about the breach in “early December,” and had specifically asked them not to inform their customers. The company complied after the FBI said it had notified the credit-card companies of the initial breach.

Since he was arrested on June 6, 2011, Monsegur’s every move was being monitored by law enforcement, through both software installed on a replacement laptop to record his keystrokes and track his online activity as well as “video surveillance in the defendant’s residence,” according to U.S. Attorney James Pastore. And yet, despite having a front-row seat inside LulzSec’s base of operations, it seems the FBI simply watched as the hackers launched their Christmas Day attack, which resulted in a thorough digital ransacking and defacement of Stratfor’s databases and website. Stratfor calculated the subsequent damage at approximately $3.78 million, and reportedly settled a $1.75 million class-action lawsuit with affected customers in 2012.

“[The FBI] could’ve stopped me,” Hammond told The Daily Dot during a prison interview last month. “They knew about it. They could’ve stopped dozens of sites I was breaking into.”

In addition to Stratfor, those attacks compromised hundreds of online domains belonging to various foreign governments in early 2012, including a rash of attacks in Brazil. Armed with knowledge of a powerful “zero-day” vulnerability affecting the popular Plesk Web hosting platform, Hammond and other hackers were fed lists of vulnerable websites to break into by Monsegur, who frequently and generously redistributed the backdoor access details for fully hacked sites to different hacker groups.

“Hit these bitches for our Brazilian squad,” Monsegur instructed Hammond in a private chat on Jan. 23, 2012, with the FBI watching. According to the logs, later that same day, Monsegur returned with a “big target” for Hammond, which turned out to be a server used by Globo, the biggest media company in Brazil. But it wasn’t until months later, after Hammond was arrested and Monsegur was revealed as an informant, that Globo’s site was compromised.

It remains unclear to what extent the FBI directed Monsegur’s actions while he facilitated these attacks, because the Confidential Human Source (CHS) reports and other documentation detailing his interactions with FBI handlers remain under seal. But Pastore, the U.S. Attorney, has stated that Monsegur regularly debriefed members of law enforcement after talking with the hacktivists, describing “exactly who each of those individuals were, what he knew about them, and how they fit into the overall picture of LulzSec and the other cybercrimes that he provided information about.”

In the end, Hammond received the maximum 10-year sentence for his digital intrusions, which were harshly characterized by Judge Loretta Preska as acts motivated by a desire to cause “mayhem.” Meanwhile, Monsegur, who originally faced up to 122 years in prison, was released with time served last week after spending only seven months in custody. Preska repeatedly praised his decision to “turn on a dime” and work “around the clock,” providing the FBI with information on “targets of national and international interests.” Prosecutors claim that Monsegur helped prevent as many as 300 cyberattacks during his time as an informant.

The chat logs, however, seem to tell a different story: one of an FBI informant actively facilitating cyberattacks against governments and corporations, in hopes that it might result in a handful of convicted hackers. But if “damage” is the true metric of a hack, the significant collateral damage apparently caused by the FBI’s operation raises more urgent questions of just how far law enforcement should go to crack down on cybercrime.

Related from The Daily Beast

Like us on Facebook - Follow us on Twitter - Sign up for The Cheat Sheet Newsletter

Yahoo Sports
Former MLB infielder, Little League World Series star Sean Burroughs dies at 43
The seven-year major leaguer collapsed while coaching his son's Little League game on Thursday.
Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
The best RBs for 2024 fantasy football, according to our experts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
Yahoo Sports
Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’
The 2024 Yankees have rediscovered their bravado and hold the second-best record in the AL, thanks in large part to the superstar outfielder.
Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Autoblog
Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)
Trucks aren't known for being fuel efficient, though times are changing. These are the trucks with the best gas mileage in various segments.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.
Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Golf’s moment of truth is here, and the sport is badly flailing
Nonexistent negotiations and missed opportunities for reconciliation between the PGA Tour and LIV Golf have the sport stuck in place.
Yahoo Sports
2024 Fantasy Football Mock Draft, 1.0
The Yahoo Fantasy football crew got together for their very first mock draft of 2024. Andy Behrens recaps the results.
Yahoo Finance
Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'
Ryan says he would be writing in a Republican candidate instead of voting for Donald Trump.
Yahoo Sports
Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful
Teams have made their big splashes in free agency and made their draft picks, it's time for you to do the same. It's fantasy football mock draft time. Some call this time of year best ball season, others know it's an opportunity to get a leg up on your competition for when you have to draft in August. The staff at Yahoo Fantasy did their first mock draft of the 2024 season to help you with the latter. Matt Harmon and Andy Behrens are here to break it all down by each round and crush some staff members in the process.
Yahoo Sports
Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1
It’s key to note that we’re not saying the “best team” or “best roster.” Instead, we’re talking about the best confluence of factors that can outline a path for survival and then success.
Yahoo Sports
Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from
With free agency and the draft behind us, what 32 teams look like today will likely be what they look like Week 1 and beyond for the 2024 season. Matt Harmon and Scott Pianowski reveal the post-draft fantasy power rankings. The duo break down the rankings in six tiers: Elite offensive ecosystems, teams on the cusp of being complete mixed bag ecosystems, offensive ecosystems with something to prove, offenses that could go either way, and offenses that are best to stay away from in fantasy.
Yahoo Finance
Mortgage rates drop for the first time in five weeks with experts adjusting their forecasts
The average 30-year fixed mortgage rate edged back toward 7% this week but remains elevated, prompting housing experts to revise their forecasts for the rest of 2024.
Yahoo Sports
Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing
The Cardinals' nightmare season continues.
Yahoo Sports
The Cheap Seats: Fantasy baseball mailbag (with one key fantasy football question)
Fantasy baseball analyst Scott Pianowski answers your pressing questions in his latest mailbag as we head toward the end of Week 6.
Yahoo Finance
Recession-proof stocks are leading the market's latest leg higher
The Utilities and Consumer Staples sectors have popped since mid-April as investors search for value.
Yahoo Sports
Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap
Jake Mintz & Jordan Shusterman discuss the Padres-Marlins trade that sent Luis Arraez to San Diego, as well as recap all the action from this weekend in baseball and send birthday wishes to hall-of-famer Willie Mays.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Did the FBI Steer LulzSec Hacking Spree?

Recommended Stories

Former MLB infielder, Little League World Series star Sean Burroughs dies at 43

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

The best RBs for 2024 fantasy football, according to our experts

Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’

The FDIC change that leaves wealthy bank depositors with less protection

Which pickup trucks get the best fuel economy? Here are the tops for gas mileage (or diesel)

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'

Former NBA guard Darius Morris dies at 33

Golf’s moment of truth is here, and the sport is badly flailing

2024 Fantasy Football Mock Draft, 1.0

Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'

Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful

Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1

Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from

Mortgage rates drop for the first time in five weeks with experts adjusting their forecasts

Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing

The Cheap Seats: Fantasy baseball mailbag (with one key fantasy football question)

Recession-proof stocks are leading the market's latest leg higher

Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap

The best budgeting apps for 2024