Hackers Warn National Level Cyber Security Threats Against Italy

Jay Decenella, IT audit expert
July 25, 2011 /

A group of hacker-activists waving a series of cyber attacks lately has surfaced to warn Italy that it would release secret information allegedly stolen from the country’s cyber crime unit, which could spell a compromise on its national IT infrastructure.

Anonymous and Lulzsec hackers struck Italian cyber crime unit Centro Nazionale Anticrimine Informatico per la Protezione delle Infrastrutture Critiche (CNAIPIC), according to a Tweet posted by AnyonymousIRC.

“If it’s true that security at CNAIPIC has been breached by hackers, that would be a genuine concern as the group works with intelligence agencies around the world,” Sophos technology consultant Graham Cluley said.

The link in the Tweet pointed to the previews of what the hacker group claimed to be 8GB of files, which have already been published in filesharing Web site Pastebin after it was leaked by a “source”.

“#AntiSec strikes at Italy Government. Silent no more,” said the Tweet.

“This is a pre-release of a series we are going to make to reveal the biggest in history of European LE cyber operation evidence exploitation and abuse. Thing’s gonna get published and twittered all over anonymous and lulzsec community,” Anonymous said.

“This corrupted organisation gathered all the evidence from the seized property of suspected computer professional entertainers and utilised it over many years to conduct illegal operations with foreign intelligence agencies and oligarchy to facilitate their lust for power and money, they never used obtained evidence to really support ongoing investigations,” added the hacker group.

The stolen documents could include information from the Egyptian Ministry of Transport and Communication, Australian Ministry of Defence, US Departments of Agriculture and Justice, and the Nepalese Ministry of Foreign Affairs, on top of the data obtained from private firms including Gazprom and Exxon Mobil as well as foreign governments, Anonymous claimed.

In addition, the attack allegedly compromised the confidential information of public- and private-sector organizations from the US, Egypt, Russia, Ukraine, Nepal, Belorussia, Vietnam, Cyprus, Gibraltar and the Cayman Islands.

The cyber attack was the latest in a series of “AntiSec movements” against organizations that Anonymous considers to be corrupt.

“So, why is Anonymous apparently targeting the Italian cyber crime authorities?” Cluley said.

“Well, earlier this month, Italian police searched dozens of houses and charged suspects, in an investigation into the Italian branch of Anonymous – which is suspected of hitting government, business and media websites with denial-of-service attacks.

“Inevitably there will be speculation that this is a counter-attack against the Italian authorities following the arrests.”

Earlier this month, Anonymous defaced Turkish government Web sites to protest the internet filtering regulations to be introduced next month.

More recently, the group claimed to have broken into the NATO servers as part of its AntiSec campaign. AnonymousIRC posted links that pointed to two documents.

The first, dated 2007 and marked “Nato Restricted”, was a purported working paper on communication systems at the Joint Communications Control Centre for ISAF forces in Afganistan, which included a detailed procurement estimates and technical information.

The second, dated 2008 with similar marks, contained proposals for outsourcing communications systems for Nato forces in Kosovo, while a third document dated 2002 laid down security ground rules for Nato.

 

Share your opinion