Jul 30, 2012

An Anonymous attack in search of a purpose

The problem with Anonymous is that it's like a bloke with a hammer forever wandering around looking for nails. Last week's hack of telco AAPT is a case in point.

Stilgherrian — Technology writer and broadcaster


Technology writer and broadcaster

The problem with Anonymous is that it's like a bloke with a hammer forever wandering around looking for nails. Last week's hack of telco AAPT is a case in point. Over the weekend persons unknown working under the Anonymous brand made good their promise to publish data they'd lifted from AAPT. The first batch -- just part of some 40 gigabytes they claim to have obtained -- appears to include a database of AAPT's business customers, including staff contacts and the amount they spend. AAPT's response so far has been the usual PR hose-down, but they should be more than a bit embarrassed. Why was this internal business data on a server over at Melbourne IT? Melbourne IT should be even more embarrassed. Anonymous' point of entry seems to have been out-of-date software. That's a beginner-level mistake. Anonymous' job was easy. Considered politically rather than technically, Anonymous' actions are also a beginner-level mistake. This hack was part of Operation Australia, a campaign against what these members see as the deeply troubling "data retention" proposal being floated as part of the inquiry into potential reforms of National Security Legislation. Internet service providers would be required to keep logs of their customers' internet use for two years for potential use by law enforcement. Anonymous intended to illustrate that data retention would require ISPs to keep this vast honeypot of personal information secure, an impossible task. Well, they illustrated that this particular ISP could be hacked in this particular way. Any repository for data retention would be purpose-built. The need to keep potential criminal evidence comparmentalised and under a proper chain of custody would see to that. But still, it's an exceedingly difficult and expensive job. ISPs don't want this burden, and they've already communicated this message to the government in less public forums. It's a little early for protest action. Data retention is only a proposal, albeit one with support from law enforcement agencies. Comments don't even close until August 20. All Anonymous has done is remind the world the internet is riddled with unknown criminals who must be stopped, creating more support for the very laws they want to stop. There's often a certain cluelessness about Anonymous' actions. It's inevitable. Anyone can do anything and claim they're acting in the name of Anonymous, even the politically naive. Or even someone with completely different motives, such as an intelligence agency doing a bit of disinformation. Operation Australia, for example, included a hack on some of Queensland government servers, and much was made of a database file named "dsdweb-tracking.mdb" that supposedly "gives us some insights on how the Australian government was monitoring its citizens activity". But given there's a database field called "MemberID", given that it's Queensland, and given certain other details of the data after a brief look, my money is on "dsd" standing not for Defence Signals Directorate but Queensland's Department of State Development, and this database being an ordinary web application log. What does that have to do with ISP data retention? Nothing. Israeli information security researcher Tal Be'ery, who's been tracking online hacktivism -- running counter-surveillance, if you like -- has noted that hacktivists often select targets of opportunity. "Most of the time there is a topic, something that the group wants to protect against ... It seems like their is a bank of possible targets related to that cause, and really they are going against the easiest targets maybe because in hacktivism it's all about the PR impact and it doesn't matter to the press whether a really significant site was taken down and DDoSed or whatever," he said. The object of protest here was "the government", so they attack whatever vulnerable government sites they could find. Commonwealth, Queensland, it's all the same. AAPT was hit because anything ISP-related would have done the job. "Sometimes, you know, it's even more opportunistic than that. Sometimes you find the target first and then come up with the cause, or adjust the cause to be relevant," Be'ery said. Anonymous' work has always been scattergun, but my gut feeling is that it'll get worse as they lose significant parts of the core of cluefulness they had. There's been FBI infiltration and arrests, and doubtless there's more to come. In a podcast in May this year, associate Barrett Brown lamented that Anonymous was crippled:
"The AnonOps [chat] server, for instance, is not what it was like a year ago, more than a year ago. It's very different now in terms of who's there, what they're doing, if they care. It's simply the nature of the beast. When you have a crowdsourced operation, just like a democracy, it's only going to be as good as its participants."
And then there's the problem that a hacking group, however constituted, just wants to do hacking. The hammer of hacking isn't always the best tactic.

Free Trial

You've hit members-only content.

Sign up for a FREE 21-day trial to keep reading and get the best of Crikey straight to your inbox

By starting a free trial, you agree to accept Crikey’s terms and conditions


Leave a comment

8 thoughts on “An Anonymous attack in search of a purpose

  1. Sam Cox

    Hmm… yes, amazing insight. So a completely anonymous, unverified, very loosely connected group of people of various technical skill levels residing in various countries and of various ages sometimes have trouble producing cohesive results as part of a poorly defined operation that one of them made up?

    Just replace ‘Anonymous’ with ‘some people using the internet’ and see how absurd your article sounds.

  2. Sancho

    That’s not quite right, Sam. Anonymous originated on 4chan and at one time had a fairly cohesive set of priorites backed up with discussion and co-ordination.

    It was only after the Anonymous brand gained some traction outside 4chan that it began growing to meet your description.

  3. Lucas.James

    [quote]Why was this internal business data on a server over at Melbourne IT?[/quote]

    It is this new thing they call the cloud. Apparently it is the be-all and end-all of your server needs.


  4. The Old Bill

    Don’t quite get your point.

    AAPT has over 40 gig of sensitive data on a server at Melbourne IT.

    A Nony Mouse, now “no longer a cohesive unit of hackers with one united purpose” manages to hack the above information for a “non united very loosely connected non reason”.
    Then you lost me___

    I hope you were trying to say that organizations like AAPT should be FORCED TO PROTECT CUSTOMERS DATA, but somehow you seem to be saying that hackers shouldn’t hack, so really its no ones fault except for the stupid misguided hackers???????? Very Mrs Bush of you. “Just say no to hacking kids” Hacking is bad – OK?

  5. Stilgherrian

    @The Old Bill: I’ve already made the point about the defender’s responsibilities elsewhere. Quite a few times. Notably here only Friday. This is a piece about Anonymous’ place in the world, given recent events.

  6. AR

    For all the intricacies I’m at a loss to understsand why so many people are prepared to entrust, nay live, their lives on-line when it is all dependent on the good-will, read profit motive, of the ISPs.
    Talk about Gatekeepers – when, not IF, they decide on a standard, the free wheeling, demokratika will cease!

  7. The Old Bill

    Fair call STILGHERRIAN, but I suppose the point I didn’t make is:
    At least it was Anonymous who did this for whatever reason. Crime syndicates and individuals are doing this all the time for financial gain, so therefore Anonymous have done everyone a favour. It may be scattergun, it may be opportunistic, it is more than likely for all the wrong reasons, it may even be someone just using the name “Anonymous”, but I for one enjoy the fact there are individuals out there who have have a hammer and are looking for nails, to use your metaphor.

    Just think of them as the “Democrats” keeping the bastards honest. (Though at some stage they may stuff up and vote for a GST. )

  8. kilim

    ‘All Anonymous has done is remind the world the internet is riddled with unknown criminals who must be stopped, creating more support for the very laws they want to stop.’

    Pah! Naïve, wishful thinking should not masquerade as expert comment, though, naturally, as a democrat (small ‘d’) I support to the death your right to inhabit a world of fantasy.

    In my world, we have been reminded – yet again, lest we forget, fat chance – that online information custodians are not to be trusted, Q.E.D. Or, to put it another way, don’t put anything online you wouldn’t want your closest worst enemy to know – and yeah, that horse has bolted right out of my stable, too. Brave New Thingy, here we come.

    Probably best to have an examinable life; but, even so, still don’t assume truth or innocence will save you if the bastards Really Want To Get You [Youtube: ‘Don’t Talk To Cops’ parts 1 and 2]. That distant cave above the permafrost starts to look mighty purty about now …

Share this article with a friend

Just fill out the fields below and we'll send your friend a link to this article along with a message from you.

Your details

Your friend's details