Dissatisfaction with child pornography, Anonymous hackers take out-dark one-fifth dark Web site network, hack-IT information
"Hello, Freedom Hosting II, you have been hacked. ”
On Friday, more than tens of thousands of visitors on the dark network largely based on Tor connections see this shocking announcement on the Web site. Yes, an anonymous hacker groups loudly invaded the Freedom Hosting II (hereinafter FH2) server. FH2 only allow users to access through Tor, and provide managed services, very popular. For up to six hours after this announcement, all Web sites that are hosted by that server is still offline. According to security experts, the involved sites around the dark network one-fifth.
The hacker disclosed in these dark site data is compromised, more than half involving child pornography, and some are related to the currency trading services, the Ponzi scheme and hacker Forum. According to unreliable sources, hackers FH2 0.1 available coins or 100 dollar price in Exchange for leaking data.
On Saturday, the hacker stated the details of the fall of FH2 and the move in the first place.
The group said in a message: "in fact, this is the first intrusion. We just happen to have hacked the server and try one. ”
According to the Organization, on January 30 first invaded FH2, but only read access, which means that they cannot make any changes to the file, or delete, but you can take all of the server hosting the Web site information.
The hacker also says: "FH2 initially did not intend to attack plan, just quietly observe. "But then they found a number of large Web sites on child pornography, excess use FH2 space quota. Because usually FH2 256MB quota for each site, but has reached the quota of these illegal sites GB levels. Subsequent updates of the organization said in a statement, they had found on the FH2 10 child pornography Web sites, the files take up space with up to 30GB, child pornography has accounted for more than half of the servers to store data. They are angry, "which suggests that these illegal sites pay for the hosting services of their website content, in other words the server administrator know perfectly well. This is the reason why we want to take FH2. ”
In the case of unpublished data, such a statement really convincing, but in view of the various dark network server companies understand, this does have some credibility. As early as 2013, Freedom Hosting the early hosts had been breached the law enforcement sector, data leaked a large quantity of illegal child pornography, when the hosting half the dark network's Web site.
According to the dark network researcher Sarah Jamie Lewis described Freedom Hosting II is smaller than the first generation. According to earlier reports, Freedom Hosting II about the dark network of 20%. Lewis has also prepared a list, list contents 10,613 affected server address. He said people can through a SSH fingerprints or intrusion hostname means to recognize FHII managed website.
As for how they invade FH2, the hackers said they took only 21 steps. In short, they first of all create a new FH2 website or log existing FH2 website, adjust some settings in the configuration file, then a target of password reset, open root access permissions to log in again using the new system, and finally just enjoy the fruits of victory.
The organizations say they have released lots of FH2 system files, but does not address user data. Taking into account the FH2 Web site contained a large number of child pornography, they had no plans to open to the public, but they would like to backup user data available to security researchers, which were submitted to law enforcement agencies.
"If there are a large number of child pornography appeared in dark network, although we may not act on its own, but we support you to capture the child pornography Web sites. "Hacker says.
不满儿童色情存在,匿名黑客组织干掉五分之一暗网网站 - 暗网,黑客 - IT资讯
“你好,Freedom Hosting II,你已被黑客入侵。”
本周五,超过万名访客在大量基于Tor连接的暗网网站上看到了这则令人震惊的公告。是的,一个匿名黑客组织大张旗鼓地侵入了Freedom Hosting II(以下简称FH2)的服务器。FH2仅允许用户通过Tor进行访问,并提供托管服务,相当受欢迎。在此公告发布长达六小时之后,由该服务器托管的所有网站仍处于离线状态。据安全专家介绍,涉及站点约占暗网五分之一。
该黑客组织披露,被攻破的这些暗网站点数据中,超过半数涉及儿童色情,还有一些则涉及比特币交易服务、庞氏骗局和黑客论坛。据不可靠消息称,黑客组织向FH2提出可用0.1比特币或100美元的价格来交换泄露数据。
周六,该黑客组织陈述了攻陷FH2的各项细节以及此举的初衷。
该组织在邮件中表示:“事实上,这是我们的首次入侵行为。我们只是刚好有了黑掉这个服务器的想法,然后尝试了一把。”
据该组织透露,他们在1月30日首次入侵FH2,但当时仅获得了读取权限,也就是说那个时候他们还无法对文件进行任何更改或删除,但是可以获取该服务器托管的所有网站信息。
该黑客组织也表示:“最初并无打算攻下FH2的打算,仅仅是在默默观察而已。”但是后来他们在上面发现了数个大型儿童色情网站,正超额占用FH2的空间配额。因为通常FH2仅为每个网站提供256MB配额,但是这些非法网站的配额竟然达到了GB级别。随后该组织更新声明称,他们已经在FH2上找到了10个儿童色情网站,其文件占用的空间多达30GB,儿童色情制品已占该服务器储存数据的一半以上。他们对此感到愤怒:“这就表明这些非法网站付费获取了托管服务,换句话说服务器管理员对他们的网站内容心知肚明。这就是我们要把FH2攻下的原因。”
在未公布数据的情况下,这样的声明确实很难令人信服,但是鉴于对各个暗网服务器公司的了解,这种说法确实有一定可信度。早在2013年,Freedom Hosting初代主机就曾被执法部门攻破,泄露出大量非法儿童色情数据,当时该主机托管了暗网半数的网站。
根据暗网研究员Sarah Jamie Lewis所述,Freedom Hosting II比其初代要小。据早前报告显示,Freedom Hosting II大约占了暗网的20%。Lewis还编写了一份列表,列表内容是10,613个受到影响的服务器地址。他表示人们可以通过SSH指纹或入侵主机名等手段对FHII托管的网站进行识别。
至于他们是如何入侵FH2的,该黑客组织表示他们仅用了21个步骤。简而言之,他们首先创建了一个新的FH2网站或者登录已有的FH2网站,调整配置文件中的某些设置,随后对某一目标的密码进行重置、打开root访问权限,用全新的系统权限重新登录,最后只需享受胜利的果实即可。
该组织表示他们已经公布了大量来自FH2的系统文件,但并未涉及用户数据。考虑到FH2网站上存有大量儿童色情内容,他们并不打算对外公开,但是他们倒是愿意将用户数据的备份提供给安全研究员,由其递交给执法部门。
“如果再有大量儿童色情制品出现在暗网,虽然我们自己可能不会有所行动,但我们支持大家去攻占这些儿童色情网站。”黑客组织说。