04-03-2012, 02:49 AM
Media articles are at the bottom of this pad
----------------------------------------------------------------------
Odious corporate spying firms enjoy epic bad publicity day
What's outlined in these sets of proposals, as Glenn points out, "quite possibly constitutes serious crimes." And as it relates to Glenn and the others, it constitutes an unconscionable attempt to silence journalists doing their jobs.
One nice point about the criminality is that (at least in my jurisdiction) the confidential information regimes are an outspring of the law of equity, and one of the core equitable maxims is those who come to equity must do so with clean hands (ie, the law won't recognise your rights where they protect unconscionable conduct)
Aaron Barr vs Barret Brown Phone Conference
http://www.mediafire.com/file/7vb98xu7co...wnLULZ.wma
Internal Email lulz:
http://img823.imageshack.us/img823/7462/hbgary.jpg
http://img708.imageshack.us/img708/5227/...809030.jpg
http://img14.imageshack.us/img14/2475/pwntweet.jpg
Aaron VS WinMark Emails:
http://pastebin.com/h0uBZWUK
http://pastebin.com/ZzcvLmS9
http://pastebin.com/WUZHzMDW
Aaron> Anonymous group and comments on Goverment talks
http://search.hbgary.anonleaks.ru/index.php?id=16793
From Greg - Jamie is a fuck-tard
http://search.hbgary.anonleaks.ru/index.php?id=25761
Bank of the West / Botnet
http://search.hbgary.anonleaks.ru/index.php?id=9472
Citibank have been using falsified documents!!!
http://search.hbgary.anonleaks.ru/index.php?id=27331
http://search.hbgary.anonleaks.ru/index.php?id=19411
It appears penny was in the know about Aaron's bullshit all along
http://search.hbgary.anonleaks.ru/index.php?id=16774
Interesting resume of former U.S. military intel officer who applied for gig with HBGary
http://search.hbgary.anonleaks.ru/index.php?id=35748
Direct deposit information for their bank account. Routing and account number
http://search.hbgary.anonleaks.ru/index.php?id=43852
Can debatably be construed as the advocation of illegal activities
http://search.hbgary.anonleaks.ru/index.php?id=37523
HBGary Patent Info (with doc)
http://search.hbgary.anonleaks.ru/index.php?id=34582
Paystub
http://search.hbgary.anonleaks.ru/index.php?id=30571 Pull the paystub out, I bet its got his SSN on it
Internal company conflict
http://search.hbgary.anonleaks.ru/index.php?id=31296
Arguments between Aaron and his wife
http://www.lacy.ie/hbgary.php?to=&from=&...mit=Search
Here's Greg when he's mad
http://search.hbgary.anonleaks.ru/index.php?id=35748
"Penny Leavy-Hoglund" <3 Greg
http://pastebin.com/4rM26cwT
Visited the Pentagon in January
http://search.hbgary.anonleaks.ru/index.php?id=19475
Ted H. Vera >President | COO >HBGary Federal >719-237-8623 http://search.hbgary.anonleaks.ru/index.php?id=37018
76-thousand+ cracked username/password combinations in a table called MEMBERS
http://search.hbgary.anonleaks.ru/index.php?id=30118
Aaron>Sooooo...using the google hack string
http://search.hbgary.anonleaks.ru/index.php?id=6732
Checklist for New Facility Security Clearances
http://search.hbgary.anonleaks.ru/index.php?id=10709
Aaron>Ted: pointabout.com. I am partnering with them to go after some work and develop some capabilities. Specifically look at their tech appmakr.com.
http://search.hbgary.anonleaks.ru/index.php?id=36834
Social Media Data Collection and Persona Development
http://pastebin.com/n7ZW78WC
Provisional Industrial Security Approval Sponsorship Program - NSA/CSS
http://search.hbgary.anonleaks.ru/index.php?id=19475
Nmap host scan
http://search.hbgary.anonleaks.ru/index.php?id=30380
There were emails about the NSA PISA [http://www.nsa.gov/business/programs/pisa.shtml program, and getting free certification through Aaron's connections
Others that maybe of interest:
http://search.hbgary.anonleaks.ru/index.php?id=20319
http://search.hbgary.anonleaks.ru/index.php?id=16501
http://search.hbgary.anonleaks.ru/index.php?id=3622
http://search.hbgary.anonleaks.ru/index.php?id=11816
http://search.hbgary.anonleaks.ru/index.php?id=2860
http://search.hbgary.anonleaks.ru/index.php?id=19359
http://search.hbgary.anonleaks.ru/index.php?id=21680
http://search.hbgary.anonleaks.ru/index.php?id=13183
http://search.hbgary.anonleaks.ru/index.php?id=20280
http://search.hbgary.anonleaks.ru/index.php?id=31290
http://search.hbgary.anonleaks.ru/index.php?id=21462
I think these guys are going to get arrested, it would be interesting
to leave the soft impression that Aaron is the one that got them, and
that without Aaron the Feds would have never been able to get out of
their own way. So, position Aaron as a hero to the public. At this
point they are going to get arrested anyway. But, Aaron has some
concerns on how that might affect commerical business (although I'm
not clear on why yet)
---
Dated 1/18/2011
Greetings Aaron,
Congratulations - your talk "Who Needs NSA when we have Social Media?" has
been selected for the B-Sides San Francisco event. Please take a few
minutes to fill out the speaker questionnaire located here:https://spreadsheets.google.com/viewform...b1pJY1E6MQ
I will also send an invite to the form separately in case you have any
problems.
Please let me know if you have any questions.
Thank you,
Amber Wolf
Event Organizer
Security B-Sides
415.405.5250
@securitybsides
I wanted to give u some information and see if you thought any of your customers might have some interest in the data.
I am not sure if you have been following. There is a group called Anonymous, that started supporting Wikileaks by attacking cyber targets, such as Mastercard and VIsa. I am doing research for a talk I am giving in San Francisco next month. The focus of my research is this group, identifying key players, organizational structure. I am doing a pretty good job identifying key people and illuminating how they work. All of this I am doing using social
If you think any of your customers might be interested let me know.
Aaron
---
HBGary Federal Flexes Private Intelligence Muscle.
HBGary Federal, the specialized and classified services arm of HBGary,
flexes its muscle today by revealing the identities of all the top
management within the group Anonymous, the group behind the DDOS
attacks associated with Wikileaks. HBGary Federal constructed and
maintained multiple digital identities and penetrated the upper
management of Anonymous, and was subsequently able to learn actual
identities of the primary management team BUILDING A COMPLETE ORG
CHART. This information was critical for law enforcement, yet all the
intelligence work was done without law enforcement or government
involvement. Only after achieving the mission did Aaron Barr, the CEO
of HBGary Federal, reveal this information to the Feds. This
underscores the need for new blood in the intelligence community and
the abilities of small agile teams that are unhindered by the
bureaucratic machine.
what do you think? too negative on intel community?
-G
---
From: Greg Hoglund greg@hbgary.com
To: Aaron Barr aaron@hbgary.com
HBGAry Federal Pwns Anonymous
---
This is a proud day. HBGAry Federal, lead by Aaron Barr, has made ppublic their long term penetration of the anonymous groupp, the DDOS group associated with Wikileaks.
They were able to penetrate the group to the highest levell, gaining the trust of the inner circle.
The HBGary Federal team was able to learn the identities of all the key key pplayers - appproximately 10 people. Now these individuals are being arrested by the FBI. Aaron and his team were also able to learn the identities of approx. 30 liutenants. The Feds are finally taking down Anonymous, but, it should be noted that HBGary Federal perfromed this entire operation without law enforcement or government invollvement.
---
So how I would pitch an increased price
1. First HBGary and the other investors will not be participating in the
earn out and we've invested in giving you services work to jump start and
give references.
2. HBGary would have hired three developers to complete the work and we'd
still have that investment
3. HBGary is being courted by large software vendors and they would be
interested in HBGary Federal for the pipeline of business. Since HBGary is
an investor, we'd need to recoup costs we've put out that are around $82K
plus a good return.
-Penny
---
Aaron Barr to Mark
But dude whos evil?
US Gov? Wikileaks? Anonymous?
Its all about power. The Wikileaks and Anonymous guys think they are doing the people justice by without much investigation or education exposing information or targeting organizations? BS. Its about trying to take power from others and give it to themeselves.
I follow one law.
Mine.
from Mark:
Our entire government was set up on the idea of "trying to take power from others and give it to themselves" The founders stated it implicitly. The idea was for the states to fight the federal gov and to fight amongst themselves so nothing would every be accomplished except for when it absolutely needed to be. That's why the government is told what it can do not what it can not. Anything not stated is suppose to be out of the governments hands. Where any law to a citizen is suppose to be what you can't do so that you can do whatever you want without infringing apon the freedoms and liberties of other citizens. A non transparent government does nothing but keep the citizens uninformed and unable to make an educated vote. Your one law statement makes it sound like you believe you know what's best. That's a slippery slope.
Jefferson was an idealist that lived in a very different time.
And he had slaves...
- Aaron's response
---
Yeah, how did that work out the first time. You wanted Dan to be your engineer not me. Want me to check that facebook page "I listened to Aaron Barr and now I'm under investigation". Yeah, your gut feelings are awesome! Plus, scientifically proven that gut feelings are wrong by real scientist types. - Mark
(Do we want awesome Mark quotes or just Aaron idiot quotes?) go to town on it
the more the better imo
---
I'm not doubting that you're doing analysis. I'm doubting that statistically that analysis has any mathematical weight to back it. I put it at less than .1% chance that it's right. You're still working off of the idea that the data is accurate. - Mark
---
I made some significant progress last night on my understanding of the group. I feel I have nearly every one of the leadership, administrators and operators identified to a real person.
First a clarification.
Q - Founder and runs the IRC. He is indead in California, as are many of the senior leadership of the group.
Owen - Almost a co-founder, lives in NY with family that are also active in the group, including slenaid and rabbit (nicks).
Most of the people in the IRC channel are zombies to inflate the numbers. At any given time there are probably no more than 20-40 people active, accept during hightened points of activity like Egypt and Tunisia where the numbers swell but mostly by trolls.
Now for a description of roles. The administrators run the show. The operators are there to answer questions, manage tasks, such as the mass faxing and sms spamming efforts during OpEgypt. They also manage the bots. I believe most of their DDOS capability comes from a small subset of people like CommanderX that manage some significant firepower.
Most of the operational leadership with US based with some measurable support from some of their old 4chan friends in UK, France, Germany, Netherlands. I have these people identified as well.
The communications outgrowth in FB and twitter is a different structure. The leadership of operations and those that manage the communications talk and share information but act autonomously. Operation Egypt FB page was a significant conduit of information during the operation and has more people that follow that page than any of the official Anonops pages on FB.
Any other questions let me know.
Aaron
---
Hmm. Don't know what impact will be there.
Story should go online in a few hours.
Focus is on Anonymous structure, handles of leaders, inroads by law enforcement, and your work.
As long as I leave my specific irc amd FB alias out of the conversation I should be ok.
Aaron
---
The conversation was very interesting today. The admit they had no idea this was happening until it hit the streets. They have no idea how to manage things like this in the future. And the agree they are not capable of doing the right activities (like I did) to be better prepared in the future because of authority and policy restrictions.
So I gave them a model that might work. I will do the work based on my understanding of need on my dime... put together a report... and sell them the report.
They liked that. I am working up 5 slides to hopefully brief Glenn next Friday.
Aaron
---
karen, aaron,
60 minutes wants to do a segment with Aaron about penetrating anonymous.
- Greg
You are the dark star. Oh, I'm afraid the deflector shield will be
quite operational when your friends arrive....
jesus say it aint so
- Greg
---
Any group of people with a common goal is reckless. No one knows the effects of an attack or it's outcome. May I point your direction to the Middle East since it was Persia and Mesopotamia.
I don't believe the ACLU or PETA or Greenpeace are always focused and cosiderate groups, but occasionally the do raise some good points.
I enjoy the LULZ
- Mark
---
When these groups speak of free information, including the open source groups, they mean governments and organizations, people have a right to privacy, governements, organizations, and corporations are not people. The supreme court can keep trying to say they are so that corps can give money to politicians but they are not people. They can not be harmed in the same manners. Their freedom to exist can not be taken away in the same way.
That's what they mean they just suck at saying it.
- Mark
This group has some good points but is acting very recklessly I think. So if I can help to be a small balance, and get some press and customers in the process...yeah! - Aaron, in response.
---
Governments and corporations should have a right to protect secrets, senstive information that could be damage to their operations. I think these groups are also saying this should be free game as well and I disagree. Hence the 250,000 cables. WHich was bullshit. - Aaron
---
With wikileaks and anonymous they corrupted faster. O believed in what wikileaks did when they released the helicopter video. I now believe they are a menace. Anonymous employees. - Aaronfag
---
When u figure out how to scrape the people who have liked a particular page or group then tackle this one.
I would like to be able to scrape all the people who have clicked like on a comment or posted a comment to a post.
For example.
Take the Anonops facebook page.
I would like a ranking list of the active participants on this page in ranking order of likes and comments. I would like to collect those comments and post them under the actual UID that posted them.
So then we could go to one page for a person in our system. See what their friends tell about them and what they post and like that tells about them.
Am I stretching the boundaries of possibility yet?
Aaron
---
I have thought about going to a particular organization, government agency. Here is my one concern. I am still somewhat of an unknown in the social space, a space that I see as increasingly important. I am afraid that if I go to one organization the information will be walled and I will continue to be an unknown and have to claw my way to noteriety. I know that seems incredibly self-serving, but I am a small business. I have the opportunity to ga
- Aaron
---
I wanted to inform you of my research and content for the talk at Bsides. I have focused some of my research and talk around the anonymous group, a supposed loose collection of freedom of speech enthusiasts, anarchists, etc. They used to target the RIAA with DDOS attacks now they have taken up the cause of wikileaks, tunisia, venezuela, algeria, etc. They have received a decent amount of press about this.
I am enumerating their communications infrastructure and plan to brief this as well as outing many of the major players within the group. This will likely make HBGary Federal, and likely HBGary a target.
I have developed a persona that is well accepted within their groups and want to use this and my real persona against eachother to build up press for the talk. Pre-talk plan.
I am going to tell a few key leaders under my persona, that I have been given information that a so called cyber security expert named Aaron Barr will be briefing the power of social media analysis and as part of the talk with be dissecting the Anonymous group as well as some critical infrastructure and government organizations
I will prepare a press sheet for Karen to give to Darkreading a few days after I tell these folks under persona to legitimize the accusation. This will generate a big discussion in Anonymous chat channels, which are attended by the press. This will then generate press about the talk, hopefully driving more people and more business to us.
But it will also make us a target.
Thoughts?
Aaron
reply: Well,
I don't really want to get DDOS'd, so assuming we do get DDOS'd then
what? How do we make lemonade from that?
- Greg
---
Way cool on anonymous
I am actually a bit nervous.
I am going to make a lot of people angry. Including some US govies that probably would have wished I had brought the matieral to them first.
Aaron
---
One thing of note. I know there are a few task forces looking at this in gov. What I can do is tie irc alias all the way to real person and have defined the communication and operations infrastructure of the organization. Of there are gaps in this data in government I can help and probably should before my talk when they will likely tighten things down a bit.
They may have it covered but they may not.
Aaron
---
Thank you Tom.
As to the title. I thought about it hard. Unfortunately these conference like some sensationalism. I have tried the nuts and bolts submission and been declined. And being one that likes to take some risks chose a title that would generate more interest. During the talk I will discuss how the resources required to conduct intelligence work have lessened.
Aaron
---
"They are completely pwnd. our sales rep in dc, one of the founders of HBGary, called to reassure us that none of our data or any federal agency or SI"s data has been compromised. Only their email, financials and source code. Source Code! i said, and he said it was no big deal, i am seeing the same info on the blogs and in comments on some of the articles i have been reading. pretty bad stuff, because if they have their source code, then they can develop countermeasures for their products. We are ripping out ur hbgary products until everything can be verified, thankfully we only have three small licenses."
- ???
---
Got to be honest. This response made me angry. This thing has drug out and drug out. I am in the middle of a very big event for us that will keep me very busy until the 14th. No one can expect me to drop what is likely one of the biggest events we will have this year for a "possible". I expect some flexibility given the contribution I have made thus far.
- Aaron
---
We should post this on the front page, throw out some tweets "HBGary Federal sets a new bar as private intelligence agency". The pun on bar is intentional.
-G
---
...
December 13, 2010
Blogtopic/media pitch ideas:
· The Hackers Are Coming, The Hackers Are Coming!: Today there is a flurry of breaking news stories about hacks i.e. Gawker, McDonald's, etc. Don't spread FUD, but underscore why companies need to be prepared -> the Importance of Incident Response
· Critical Infrastructure Protection in 2011 and Beyond: What should "critical infrastructure" organizations -- and security vendors need to be thinking about in the new year
...
---
Also, cocks.
-----------------------------------------------------------------------------------------------------------------------------------
IN THE MEDIA:
EXOSED: Attacks on Wikileaks (RT Interview): http://www.youtube.com/watch?v=ExL4KQ3noOI
HBGary Anonymous investigation News Article
http://pastebin.com/UsLaLbvE
Hackers Reveal Offers to Spy on Corporate Rivals
http://www.nytimes.com/2011/02/12/us/pol....html?_r=2
Anonymous' Target Planned to "Take Down" WikiLeaks
http://www.escapistmagazine.com/forums/r...aks?page=1
Palantir Tries to Preserve Their Government Contracts
http://emptywheel.firedoglake.com/2011/0...contracts/
Berico Technologies severs ties with HBGary
http://www.bericotechnologies.com/press/
Press statement from Berico: http://bericotech.com/press/
Palantir Apologizes for Wikileaks Attack Proposal, Cuts Ties with HBGary
http://blogs.forbes.com/andygreenberg/20...th-hbgary/
Press statement from Palantir: http://palantirtech.com/statement-from-dr-alex-karp
HBGary Fees: "Dam It Feels Good to Be a Gangsta"
http://emptywheel.firedoglake.com/2011/0...a-gangsta/
Hacked Documents Show Chamber Engaged HBGary to Spy on Unions
http://emptywheel.firedoglake.com/2011/0...en-hacked/
Anonymous Claims Possession Of Insidious Stuxnet Virus
http://blogs.forbes.com/chrisbarth/2011/...net-virus/
----------------------------------------------------------------------
Odious corporate spying firms enjoy epic bad publicity day
What's outlined in these sets of proposals, as Glenn points out, "quite possibly constitutes serious crimes." And as it relates to Glenn and the others, it constitutes an unconscionable attempt to silence journalists doing their jobs.
One nice point about the criminality is that (at least in my jurisdiction) the confidential information regimes are an outspring of the law of equity, and one of the core equitable maxims is those who come to equity must do so with clean hands (ie, the law won't recognise your rights where they protect unconscionable conduct)
Aaron Barr vs Barret Brown Phone Conference
http://www.mediafire.com/file/7vb98xu7co...wnLULZ.wma
Internal Email lulz:
http://img823.imageshack.us/img823/7462/hbgary.jpg
http://img708.imageshack.us/img708/5227/...809030.jpg
http://img14.imageshack.us/img14/2475/pwntweet.jpg
Aaron VS WinMark Emails:
http://pastebin.com/h0uBZWUK
http://pastebin.com/ZzcvLmS9
http://pastebin.com/WUZHzMDW
Aaron> Anonymous group and comments on Goverment talks
http://search.hbgary.anonleaks.ru/index.php?id=16793
From Greg - Jamie is a fuck-tard
http://search.hbgary.anonleaks.ru/index.php?id=25761
Bank of the West / Botnet
http://search.hbgary.anonleaks.ru/index.php?id=9472
Citibank have been using falsified documents!!!
http://search.hbgary.anonleaks.ru/index.php?id=27331
http://search.hbgary.anonleaks.ru/index.php?id=19411
It appears penny was in the know about Aaron's bullshit all along
http://search.hbgary.anonleaks.ru/index.php?id=16774
Interesting resume of former U.S. military intel officer who applied for gig with HBGary
http://search.hbgary.anonleaks.ru/index.php?id=35748
Direct deposit information for their bank account. Routing and account number
http://search.hbgary.anonleaks.ru/index.php?id=43852
Can debatably be construed as the advocation of illegal activities
http://search.hbgary.anonleaks.ru/index.php?id=37523
HBGary Patent Info (with doc)
http://search.hbgary.anonleaks.ru/index.php?id=34582
Paystub
http://search.hbgary.anonleaks.ru/index.php?id=30571 Pull the paystub out, I bet its got his SSN on it
Internal company conflict
http://search.hbgary.anonleaks.ru/index.php?id=31296
Arguments between Aaron and his wife
http://www.lacy.ie/hbgary.php?to=&from=&...mit=Search
Here's Greg when he's mad
http://search.hbgary.anonleaks.ru/index.php?id=35748
"Penny Leavy-Hoglund" <3 Greg
http://pastebin.com/4rM26cwT
Visited the Pentagon in January
http://search.hbgary.anonleaks.ru/index.php?id=19475
Ted H. Vera >President | COO >HBGary Federal >719-237-8623 http://search.hbgary.anonleaks.ru/index.php?id=37018
76-thousand+ cracked username/password combinations in a table called MEMBERS
http://search.hbgary.anonleaks.ru/index.php?id=30118
Aaron>Sooooo...using the google hack string
http://search.hbgary.anonleaks.ru/index.php?id=6732
Checklist for New Facility Security Clearances
http://search.hbgary.anonleaks.ru/index.php?id=10709
Aaron>Ted: pointabout.com. I am partnering with them to go after some work and develop some capabilities. Specifically look at their tech appmakr.com.
http://search.hbgary.anonleaks.ru/index.php?id=36834
Social Media Data Collection and Persona Development
http://pastebin.com/n7ZW78WC
Provisional Industrial Security Approval Sponsorship Program - NSA/CSS
http://search.hbgary.anonleaks.ru/index.php?id=19475
Nmap host scan
http://search.hbgary.anonleaks.ru/index.php?id=30380
There were emails about the NSA PISA [http://www.nsa.gov/business/programs/pisa.shtml program, and getting free certification through Aaron's connections
Others that maybe of interest:
http://search.hbgary.anonleaks.ru/index.php?id=20319
http://search.hbgary.anonleaks.ru/index.php?id=16501
http://search.hbgary.anonleaks.ru/index.php?id=3622
http://search.hbgary.anonleaks.ru/index.php?id=11816
http://search.hbgary.anonleaks.ru/index.php?id=2860
http://search.hbgary.anonleaks.ru/index.php?id=19359
http://search.hbgary.anonleaks.ru/index.php?id=21680
http://search.hbgary.anonleaks.ru/index.php?id=13183
http://search.hbgary.anonleaks.ru/index.php?id=20280
http://search.hbgary.anonleaks.ru/index.php?id=31290
http://search.hbgary.anonleaks.ru/index.php?id=21462
I think these guys are going to get arrested, it would be interesting
to leave the soft impression that Aaron is the one that got them, and
that without Aaron the Feds would have never been able to get out of
their own way. So, position Aaron as a hero to the public. At this
point they are going to get arrested anyway. But, Aaron has some
concerns on how that might affect commerical business (although I'm
not clear on why yet)
---
Dated 1/18/2011
Greetings Aaron,
Congratulations - your talk "Who Needs NSA when we have Social Media?" has
been selected for the B-Sides San Francisco event. Please take a few
minutes to fill out the speaker questionnaire located here:https://spreadsheets.google.com/viewform...b1pJY1E6MQ
I will also send an invite to the form separately in case you have any
problems.
Please let me know if you have any questions.
Thank you,
Amber Wolf
Event Organizer
Security B-Sides
415.405.5250
@securitybsides
I wanted to give u some information and see if you thought any of your customers might have some interest in the data.
I am not sure if you have been following. There is a group called Anonymous, that started supporting Wikileaks by attacking cyber targets, such as Mastercard and VIsa. I am doing research for a talk I am giving in San Francisco next month. The focus of my research is this group, identifying key players, organizational structure. I am doing a pretty good job identifying key people and illuminating how they work. All of this I am doing using social
If you think any of your customers might be interested let me know.
Aaron
---
HBGary Federal Flexes Private Intelligence Muscle.
HBGary Federal, the specialized and classified services arm of HBGary,
flexes its muscle today by revealing the identities of all the top
management within the group Anonymous, the group behind the DDOS
attacks associated with Wikileaks. HBGary Federal constructed and
maintained multiple digital identities and penetrated the upper
management of Anonymous, and was subsequently able to learn actual
identities of the primary management team BUILDING A COMPLETE ORG
CHART. This information was critical for law enforcement, yet all the
intelligence work was done without law enforcement or government
involvement. Only after achieving the mission did Aaron Barr, the CEO
of HBGary Federal, reveal this information to the Feds. This
underscores the need for new blood in the intelligence community and
the abilities of small agile teams that are unhindered by the
bureaucratic machine.
what do you think? too negative on intel community?
-G
---
From: Greg Hoglund greg@hbgary.com
To: Aaron Barr aaron@hbgary.com
HBGAry Federal Pwns Anonymous
---
This is a proud day. HBGAry Federal, lead by Aaron Barr, has made ppublic their long term penetration of the anonymous groupp, the DDOS group associated with Wikileaks.
They were able to penetrate the group to the highest levell, gaining the trust of the inner circle.
The HBGary Federal team was able to learn the identities of all the key key pplayers - appproximately 10 people. Now these individuals are being arrested by the FBI. Aaron and his team were also able to learn the identities of approx. 30 liutenants. The Feds are finally taking down Anonymous, but, it should be noted that HBGary Federal perfromed this entire operation without law enforcement or government invollvement.
---
So how I would pitch an increased price
1. First HBGary and the other investors will not be participating in the
earn out and we've invested in giving you services work to jump start and
give references.
2. HBGary would have hired three developers to complete the work and we'd
still have that investment
3. HBGary is being courted by large software vendors and they would be
interested in HBGary Federal for the pipeline of business. Since HBGary is
an investor, we'd need to recoup costs we've put out that are around $82K
plus a good return.
-Penny
---
Aaron Barr to Mark
But dude whos evil?
US Gov? Wikileaks? Anonymous?
Its all about power. The Wikileaks and Anonymous guys think they are doing the people justice by without much investigation or education exposing information or targeting organizations? BS. Its about trying to take power from others and give it to themeselves.
I follow one law.
Mine.
from Mark:
Our entire government was set up on the idea of "trying to take power from others and give it to themselves" The founders stated it implicitly. The idea was for the states to fight the federal gov and to fight amongst themselves so nothing would every be accomplished except for when it absolutely needed to be. That's why the government is told what it can do not what it can not. Anything not stated is suppose to be out of the governments hands. Where any law to a citizen is suppose to be what you can't do so that you can do whatever you want without infringing apon the freedoms and liberties of other citizens. A non transparent government does nothing but keep the citizens uninformed and unable to make an educated vote. Your one law statement makes it sound like you believe you know what's best. That's a slippery slope.
Jefferson was an idealist that lived in a very different time.
And he had slaves...
- Aaron's response
---
Yeah, how did that work out the first time. You wanted Dan to be your engineer not me. Want me to check that facebook page "I listened to Aaron Barr and now I'm under investigation". Yeah, your gut feelings are awesome! Plus, scientifically proven that gut feelings are wrong by real scientist types. - Mark
(Do we want awesome Mark quotes or just Aaron idiot quotes?) go to town on it
the more the better imo
---
I'm not doubting that you're doing analysis. I'm doubting that statistically that analysis has any mathematical weight to back it. I put it at less than .1% chance that it's right. You're still working off of the idea that the data is accurate. - Mark
---
I made some significant progress last night on my understanding of the group. I feel I have nearly every one of the leadership, administrators and operators identified to a real person.
First a clarification.
Q - Founder and runs the IRC. He is indead in California, as are many of the senior leadership of the group.
Owen - Almost a co-founder, lives in NY with family that are also active in the group, including slenaid and rabbit (nicks).
Most of the people in the IRC channel are zombies to inflate the numbers. At any given time there are probably no more than 20-40 people active, accept during hightened points of activity like Egypt and Tunisia where the numbers swell but mostly by trolls.
Now for a description of roles. The administrators run the show. The operators are there to answer questions, manage tasks, such as the mass faxing and sms spamming efforts during OpEgypt. They also manage the bots. I believe most of their DDOS capability comes from a small subset of people like CommanderX that manage some significant firepower.
Most of the operational leadership with US based with some measurable support from some of their old 4chan friends in UK, France, Germany, Netherlands. I have these people identified as well.
The communications outgrowth in FB and twitter is a different structure. The leadership of operations and those that manage the communications talk and share information but act autonomously. Operation Egypt FB page was a significant conduit of information during the operation and has more people that follow that page than any of the official Anonops pages on FB.
Any other questions let me know.
Aaron
---
Hmm. Don't know what impact will be there.
Story should go online in a few hours.
Focus is on Anonymous structure, handles of leaders, inroads by law enforcement, and your work.
As long as I leave my specific irc amd FB alias out of the conversation I should be ok.
Aaron
---
The conversation was very interesting today. The admit they had no idea this was happening until it hit the streets. They have no idea how to manage things like this in the future. And the agree they are not capable of doing the right activities (like I did) to be better prepared in the future because of authority and policy restrictions.
So I gave them a model that might work. I will do the work based on my understanding of need on my dime... put together a report... and sell them the report.
They liked that. I am working up 5 slides to hopefully brief Glenn next Friday.
Aaron
---
karen, aaron,
60 minutes wants to do a segment with Aaron about penetrating anonymous.
- Greg
You are the dark star. Oh, I'm afraid the deflector shield will be
quite operational when your friends arrive....
jesus say it aint so
- Greg
---
Any group of people with a common goal is reckless. No one knows the effects of an attack or it's outcome. May I point your direction to the Middle East since it was Persia and Mesopotamia.
I don't believe the ACLU or PETA or Greenpeace are always focused and cosiderate groups, but occasionally the do raise some good points.
I enjoy the LULZ
- Mark
---
When these groups speak of free information, including the open source groups, they mean governments and organizations, people have a right to privacy, governements, organizations, and corporations are not people. The supreme court can keep trying to say they are so that corps can give money to politicians but they are not people. They can not be harmed in the same manners. Their freedom to exist can not be taken away in the same way.
That's what they mean they just suck at saying it.
- Mark
This group has some good points but is acting very recklessly I think. So if I can help to be a small balance, and get some press and customers in the process...yeah! - Aaron, in response.
---
Governments and corporations should have a right to protect secrets, senstive information that could be damage to their operations. I think these groups are also saying this should be free game as well and I disagree. Hence the 250,000 cables. WHich was bullshit. - Aaron
---
With wikileaks and anonymous they corrupted faster. O believed in what wikileaks did when they released the helicopter video. I now believe they are a menace. Anonymous employees. - Aaronfag
---
When u figure out how to scrape the people who have liked a particular page or group then tackle this one.
I would like to be able to scrape all the people who have clicked like on a comment or posted a comment to a post.
For example.
Take the Anonops facebook page.
I would like a ranking list of the active participants on this page in ranking order of likes and comments. I would like to collect those comments and post them under the actual UID that posted them.
So then we could go to one page for a person in our system. See what their friends tell about them and what they post and like that tells about them.
Am I stretching the boundaries of possibility yet?
Aaron
---
I have thought about going to a particular organization, government agency. Here is my one concern. I am still somewhat of an unknown in the social space, a space that I see as increasingly important. I am afraid that if I go to one organization the information will be walled and I will continue to be an unknown and have to claw my way to noteriety. I know that seems incredibly self-serving, but I am a small business. I have the opportunity to ga
- Aaron
---
I wanted to inform you of my research and content for the talk at Bsides. I have focused some of my research and talk around the anonymous group, a supposed loose collection of freedom of speech enthusiasts, anarchists, etc. They used to target the RIAA with DDOS attacks now they have taken up the cause of wikileaks, tunisia, venezuela, algeria, etc. They have received a decent amount of press about this.
I am enumerating their communications infrastructure and plan to brief this as well as outing many of the major players within the group. This will likely make HBGary Federal, and likely HBGary a target.
I have developed a persona that is well accepted within their groups and want to use this and my real persona against eachother to build up press for the talk. Pre-talk plan.
I am going to tell a few key leaders under my persona, that I have been given information that a so called cyber security expert named Aaron Barr will be briefing the power of social media analysis and as part of the talk with be dissecting the Anonymous group as well as some critical infrastructure and government organizations
I will prepare a press sheet for Karen to give to Darkreading a few days after I tell these folks under persona to legitimize the accusation. This will generate a big discussion in Anonymous chat channels, which are attended by the press. This will then generate press about the talk, hopefully driving more people and more business to us.
But it will also make us a target.
Thoughts?
Aaron
reply: Well,
I don't really want to get DDOS'd, so assuming we do get DDOS'd then
what? How do we make lemonade from that?
- Greg
---
Way cool on anonymous
I am actually a bit nervous.
I am going to make a lot of people angry. Including some US govies that probably would have wished I had brought the matieral to them first.
Aaron
---
One thing of note. I know there are a few task forces looking at this in gov. What I can do is tie irc alias all the way to real person and have defined the communication and operations infrastructure of the organization. Of there are gaps in this data in government I can help and probably should before my talk when they will likely tighten things down a bit.
They may have it covered but they may not.
Aaron
---
Thank you Tom.
As to the title. I thought about it hard. Unfortunately these conference like some sensationalism. I have tried the nuts and bolts submission and been declined. And being one that likes to take some risks chose a title that would generate more interest. During the talk I will discuss how the resources required to conduct intelligence work have lessened.
Aaron
---
"They are completely pwnd. our sales rep in dc, one of the founders of HBGary, called to reassure us that none of our data or any federal agency or SI"s data has been compromised. Only their email, financials and source code. Source Code! i said, and he said it was no big deal, i am seeing the same info on the blogs and in comments on some of the articles i have been reading. pretty bad stuff, because if they have their source code, then they can develop countermeasures for their products. We are ripping out ur hbgary products until everything can be verified, thankfully we only have three small licenses."
- ???
---
Got to be honest. This response made me angry. This thing has drug out and drug out. I am in the middle of a very big event for us that will keep me very busy until the 14th. No one can expect me to drop what is likely one of the biggest events we will have this year for a "possible". I expect some flexibility given the contribution I have made thus far.
- Aaron
---
We should post this on the front page, throw out some tweets "HBGary Federal sets a new bar as private intelligence agency". The pun on bar is intentional.
-G
---
...
December 13, 2010
Blogtopic/media pitch ideas:
· The Hackers Are Coming, The Hackers Are Coming!: Today there is a flurry of breaking news stories about hacks i.e. Gawker, McDonald's, etc. Don't spread FUD, but underscore why companies need to be prepared -> the Importance of Incident Response
· Critical Infrastructure Protection in 2011 and Beyond: What should "critical infrastructure" organizations -- and security vendors need to be thinking about in the new year
...
---
Also, cocks.
-----------------------------------------------------------------------------------------------------------------------------------
IN THE MEDIA:
EXOSED: Attacks on Wikileaks (RT Interview): http://www.youtube.com/watch?v=ExL4KQ3noOI
HBGary Anonymous investigation News Article
http://pastebin.com/UsLaLbvE
Hackers Reveal Offers to Spy on Corporate Rivals
http://www.nytimes.com/2011/02/12/us/pol....html?_r=2
Anonymous' Target Planned to "Take Down" WikiLeaks
http://www.escapistmagazine.com/forums/r...aks?page=1
Palantir Tries to Preserve Their Government Contracts
http://emptywheel.firedoglake.com/2011/0...contracts/
Berico Technologies severs ties with HBGary
http://www.bericotechnologies.com/press/
Press statement from Berico: http://bericotech.com/press/
Palantir Apologizes for Wikileaks Attack Proposal, Cuts Ties with HBGary
http://blogs.forbes.com/andygreenberg/20...th-hbgary/
Press statement from Palantir: http://palantirtech.com/statement-from-dr-alex-karp
HBGary Fees: "Dam It Feels Good to Be a Gangsta"
http://emptywheel.firedoglake.com/2011/0...a-gangsta/
Hacked Documents Show Chamber Engaged HBGary to Spy on Unions
http://emptywheel.firedoglake.com/2011/0...en-hacked/
Anonymous Claims Possession Of Insidious Stuxnet Virus
http://blogs.forbes.com/chrisbarth/2011/...net-virus/
"The philosophers have only interpreted the world, in various ways. The point, however, is to change it." Karl Marx
"He would, wouldn't he?" Mandy Rice-Davies. When asked in court whether she knew that Lord Astor had denied having sex with her.
“I think it would be a good idea” Ghandi, when asked about Western Civilisation.
"He would, wouldn't he?" Mandy Rice-Davies. When asked in court whether she knew that Lord Astor had denied having sex with her.
“I think it would be a good idea” Ghandi, when asked about Western Civilisation.