LulzSec Attacks Brazil Gov, Petrobras
LulzSec attack Brazilian Gov, Petrobras
by Kenneth Raposa, BRIC Breaker, Forbes blogs, June 22, 2011
Global hacker group LulzSec successfully hacked four government websites, shutting them down and spray painting at least one ofthem with a little keyboard graphiti. LulzSecBrazil, the Brazilian version of the group, took down the website of Brazilian oil company Petrobras on Wednesday. In its place was a message, written in Portuguese for Brazilians to “wake up” and stop paying R$2.98 per liter for gasoline (around $7.5 per gallon) while Petrobras exports it for less. Petrobras was unavailable for immediate comment on its overseas gasoline market.
LulzSec’s Brazilian hacker group has infiltrated government websites three times this year, but Wednesday’s attack was its largest yet. Between midnight and 03:00 local time, three government websites were down, including news sites, Brazil’s internal revenue service, and the main site of the President of the Republic. The SQL injection attacks made the network hosting the sites read over 2 billion unique user access attempts at the same time, slowing the site down, or shutting it down completely, according to a statement from the Office of the President.
The attacking servers were based in Italy, but could have originated elsewhere, Folha de São Paulo reported on Wednesday.
Both LulzSecBrazil and LulzSec announced the attack on their Twitter accounts as they took place.
Petrobras said in a statement that no data appears to have been stolen from the attack. “The momentary congestion of our servers did not cause any alteration to the site’s content or compromised data,” the company said.
LulzSec has been on a tear lately. It’s become the geek squad version of Al Qaeda, joyously claiming responsibility for successful attacks whenever they can. They hacked into the site of the US Senate on June 13, and shut down the Central Intelligence Agency’s website a few days later. They claimed responsibility for both. The group has asked its followers to hack government sites to “steal and leak any classified information, including emails and exchanges of documents. The main targets are banks and other high level establishments.”
LulzSec’s new campaign to steal sensitive government data — and its back to back attacks on the US and Brazil — may signal that it is getting bolder. LulzSec is like a Wikileaks cybersquad of hitmen, but so far has not uncovered any damaging information.
Reuters reporters from Boston and Johannesburg wrote this week that LulzSec recently turned down a potential reward from a security firm, Berg & Berg, that had offered $10,000 to anyone who could change a picture on its website. LulzSec did it, and left a message to say the task was easy. “Keep your money; we do it for the lulz.”