Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

FBI Informant Linked to Hacking of Foreign Websites: Report

WASHINGTON – A hacker who became an informant for the FBI directed hundreds of cyber attacks against the websites of foreign governments, including Brazil, Iran, Pakistan, Syria and Turkey, the New York Times reported Thursday.

WASHINGTON – A hacker who became an informant for the FBI directed hundreds of cyber attacks against the websites of foreign governments, including Brazil, Iran, Pakistan, Syria and Turkey, the New York Times reported Thursday.

It was unclear whether the FBI explicitly ordered the digital attacks, but court documents and interviews suggest “that the government may have used hackers to gather intelligence overseas,” the Times wrote.

The figure at the center of the case is Hector Xavier Monsegur, who had become a prominent hacker with the activist group Anonymous, which has staged cyber assaults on MasterCard, PayPal and other commercial and government targets.

Monsegur was arrested by the Federal Bureau of Investigation and became an informant, helping the law enforcement agency identify other members of Anonymous.

Monsegur instructed a fellow hacker, Jeremy Hammond, to extract data from a long list of foreign government websites. And then that information — which included bank records and login details — was uploaded to a server “monitored” by the FBI, the Times reported, citing court papers.

The vast target list for hacking added up to more than 2,000 Internet domains, including the Polish Embassy in Britain and the electricity ministry in Iraq, according to an uncensored court document cited by the Times.

Monsegur and Hammond had previously worked together to sabotage servers for Strafor Global Intelligence, an intelligence consultant firm based in Austin, Texas.

“After Stratfor, it was pretty much out of control in terms of targets we had access to,”

Advertisement. Scroll to continue reading.

Hammond told the Times in an interview from a federal prison in Kentucky, where he is serving a 10-year sentence for the Stratfor attack and other hacking. Hammond said he and Monsegur learned of a vulnerablity that could be exploited in web-hosting software called Plesk, which permitted backdoor access to thousands of websites.

A court sentencing statement said that Monsegur directed other hackers to pull data from Syrian government sites, including banks and various ministries, according to the Times.

“The FBI took advantage of hackers who wanted to help support the Syrian people against the Assad regime, who instead unwittingly provided the US government access to Syrian systems, said the court statement quoted by the Times.

Monsegur’s location is unknown and his sentencing hearing has been delayed repeatedly, fueling speculation that he remains an informant for the US government, the Times wrote.

The report reinforces allegations that the US government has exploited flaws in Internet security to spy on foreign targets. The FBI was not immediately available for comment. 

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Hear from experts as they explore the latest trends, challenges and innovations in Attack Surface Management.

Register

Event: ICS Cybersecurity Conference

The leading industrial cybersecurity conference for Operations, Control Systems and IT/OT Security professionals to connect on SCADA, DCS PLC and field controller cybersecurity.

Register

People on the Move

Cloud networking firm Aviatrix has named John Qian as CISO.

CrowdStrike has appointed Kartik Shahani as vice president of India and SAARC.

Jill Popelka has been appointed CEO at Darktrace, after serving as COO for three months.

More People On The Move

Expert Insights