FBI track alleged Anon from unsanitised busty babe pic
An alleged member of Anonymous has been tracked down after he posted a picture of his scantily clad girlfriend in an image bragging about his hacking exploits. Higinio O. Ochoa III from Texas has been charged hacking into the websites of at least four US law enforcement agencies before, in one case at least, posting personal …
This topic is closed for new posts.
<-- See Icon
Accidentally including your exact location in message taunting the police is failing about as hard as possible without actually qualifying for a Darwin Award.
Re: <-- See Icon
It occurs to me that they might have a large database of less than anonymous people that they are monitoring through more sophisticated means they don't wish to make public, and they just wait until one of them makes a mistake like this to grab them with some evidence they are happy to make public in the law courts.
Re: <-- See Icon
As conspiracy theories go, that's not too far fetched. On the other hand, having hung out with people who for one reason or another want to stay anonymous, I'm well aware of just how many ways there are to slip up, especially if you have a consistent pseudonym. And given we're dealing with the kind of person who can't spell "come at me" or "bitches" correctly I have no particular reason to think the feds needed extra help tracking him down.
Would have been perfect...
... if she actually lived in Darwin instead of Melbourne.
Re: <-- See Icon
All of these clowns eventually fail due to their hubris.
If they truly had any brains, they'd do what real spooks do - accomplish the mission and quietly move on.
Re: <-- See Icon
There's nothing in the police's investigative arsenal that beats a criminal being stupid. Fortunately America are proud to claim some of the stupidest criminals in the world.
Re: <-- See Icon
Someone else who should be filed under the category of "Arrest Me I'm Stupid"
Re: Re: <-- See Icon
How stupid? Criminally stupid, obvioulsy.
Re: <-- See Icon
DO THEY REALLY EXPECT US TO BELIEVE THAT HACKERS HAVE REAL LIVE GIRLFRIENDS THATS WHERE THE FAIL IS GEEKS HAVE TO BUY THERE WOMEN FROM THINKGEEK.COM
Re: <-- See Icon @Big dumb guy
Good one. Now that you've mastered sarcasm, try mastering the caps lock key. Then read the story again and realise the guy lives in Texas and has a "girlfriend" in Sydney. Then look up the difference between "their" and "there". Then you're ready to move on to punctuation, such as the apostrophe, comma and question mark.
Then, with luck and a lot of concentration, we can get you wearing big boy pants and stop you having those accidents.
Re: Come me bro?
I've never understood why script kiddies write the way they do, afaik leet speak hasn't been in general use for at least a decade. I can't even tell if they're failing at their own memes deliberately.
Re: Come me bro?
Probably, althoguh the missing preposition does allow for some interesting alternative interpretations.
ROFL
To paraphrase:
"PwNd by iPhone & EXiF data <3 u BiTch's"
Re: ROFL
Can't quite beat the expertise of the "hacker" that takes the photos with a device known to add the GPS coordinates and even tells you on screen it's using the GPS. Then you edit it in your no doubt cracked version of photoshop, as I doubt you spunked a grand on software, before saving it without minimising or checking what metadata has been embedded and posting it as a two finger salute to law enforcement. Geez there's some fucking stupid people out there.
No way!
At first I thought he must be innocent seeing as he had a girlfriend! Then I realised he was in Texas and she was in Melbourne, Australia - cyber-girlfriend! The law of cyberdorks and natural unselection is still maintained. I'm guessing the "ample" bit means she was a fat cyber-girlfriend too?
Not fat
Nice arse, too, but a face that's too horsey for my tastes. I'm sure El Reg commentards won't have any problem finding Ocho-Putzo's other Twitpics of Kylie Gardner.
Re: No way!
Not fat. If you bothered to go to the link to the real story from The Resister's paraphrased story, you'd see the picture. Here's the link (again):
http://www.theage.com.au/technology/technology-news/hacking-cases-body-of-evidence-20120411-1wsbh.html
Re: Re: No way!
Having seen a few hax0r groupies and Anonyputz types, I couldn't be bothered to follow the link. To put it simply, the fact that she was recogniseably human puts her above the average hax0r groupie!
Re: Pic or it didn't happen!
Busted. Nicely busted, in fact. . .
http://khiaao.blogspot.com/2012/04/busted-fbi-led-to-anonymous-hacker.html
Re: Pic or it didn't happen!
It doesn't appear she'll be going down.
Re: Pic or it didn't happen!
Hmm, picture is hosted on the Hate Mail's web servers. I notice they've cropped a fair chunk off the right hand edge for some reason. And removed the EXIF data of course :-)
Guess he wanted...
...to make a clean breast of it...
Coat 'n' cab, please.
A few simple lines to save yourself from prison
ls | xargs jhead -purejpg
or
find ./folder_of_images -name '*.jpg' | xargs mogrify -strip
I'm sure there are ways to do the same in windows, but I cannot be bothered to look. I 'clean' any images that I post to the web regardless if they're personal or not. It's a bunch of personal information that other people would rarely need, and if you're kicking the law enforcement lion in the balls, it will come back to bite you.
Re: A few simple lines to save yourself from prison
Right-click -> Properties -> Details -> Remove Properties and Personal Information.
Or the easier thing to do is to not try and hack the very people that would be kicking down your door. Of course the kiddies of 4chan have never been accused of having too much common sense.
Re: A few simple lines to save yourself from prison
I turned off geo tagging on my Android. When I view pictures on my Android that are geo tagged it shows the city over laid on the picture. I'd be surprised if the Iphone did not display the geo tag in a simllar way.
Re: "kicking the law enforcement lion in the balls"
I believe the correct usage amongst young people these days is "to insert one's male genitalia into the native habitat of a swarm of large eusocial wasps of the genus Vespa".
Re: A few simple lines to save yourself from prison
My N900 auto-purges location information when it uploads photos to anywhere. No additional software required, it's built straight into the phone. Damn handy piece of kit.
Hmmm
Take pic.
Insert fake xif data.
your boss gets a bust from the FBI in the middle of the night.
NICE
Somebody made a boob boob
Despite his boob boob this also does indicate that he is no real hacker or it's photoshopped.
I'm disappointed...
I misunderstood what the "unsanitised" bit referred to...
Lost in all the obvious humour ...
"A review of log files from the Texas DPS website revealed that it had been compromised on February 8 ... utilising a SQL injection vulnerability ..."
The Texas Department of Public Safety can't even look after their own safety. How long have SQL injection vulnerabilities been widely known about, understood and fix measures been available?
More Anon members doing the Perp Walk
Not exactly the sharpest knive in the drawer this dud.
Trey Burba strikes again.
It's not quite a fake school shooting, but nice and lulzy all the same.
http://cybercrimes.wordpress.com/tag/trey-burba/
Embarrassing really...
Smart enough to hack some bit of government, but egotistical and dumb enough to piss your scent on every lamp post from your neighbourhood to your cyber-squeeze's (tidy thrups there!). Not so anonymous after all.
Re: Embarrassing really...
Yes, embarrassing, but not surprising. The bar is actually quite low.
Whilst most government sites are probably no less secure than the average, there are a lot of them. (Governments are fairly large sprawling entities and every country has one.) It is inevitable that some will be wide open. If you go to a large multi-storey carpark on a Saturday morning and systematically try *every* car, I'm sure you will find that some of them are unlocked. (*) The only difference with web-sites is that the web-site search can be automated and probably isn't covered by the cyber equivalent of CCTV.
(* At least, you would have done in years gone by. I think at least some modern cars have a preference for automatically locking themselves if the key(s) drift too far away. Human nature remains as fallible as ever, but the common failure mode has been identified and engineered away. If only there was such a thing for SQL injections.)
Isn't this configurable ?
I know you can usually turn the option off which stores location information in your pictures. However, I noticed that my Winphone has a second option: it can automatically remove said location info again as soon as you put a picture online (social media, skydrive, etc.).
As such this leaves me wondering if the other platforms don't have an option such as this ?
Re: Isn't this configurable ?
Are you sure it works?
Or does it re-encode the data and hide it in the picture itself while sending a message to the MIBs that you are trying to hide your location/personal info?
Its a closed source app, you can't check the code to be sure.
Mines the one with the foil lining and matching hat.
Re: Tin Foil Hat
Tinfoil hats are useless. Maybe they are even a conspiracy to make the paranoid more susceptible to mind control signals.
If you want to prove this for yourself, wrap your phone in tin foil and then call it.
Pictures!
Or it didn't happen, as the saying goes.
Sorry for 2 posts quickly after another; but if the fellow geeks want to actually see the picture themselves they should check out this article (link) on the Daily Mail website.
C'mon El Reg, why didn't you post this important piece of evidence as well? ;-)
"Higinio O. Ochoa III"
The 3rd?
Why inflict the name Higinio on even 1 person?
If I may quote the film Hackers...
"Yo, man, you an amateur, man"
(ah that's just sent me off on a reverie, Angelina Jolie's lips - mmmm)
dat be "armature"
Hackers, crackers and whackers all goin down.
Security Fail
SQL Injection its not exactly the hardest of attacks to prevent, even php provides methods to prevent it, I think the blame lies as much with the original developers as with the hacker.
Re: Security Fail
No matter how technically simple the attack, anything that requires 100% perfection from humans to prevent is by definition difficult to prevent.
This topic is closed for new posts.
