Feeds

back to article Hacktivists lift emails, passwords from oil biz in support of Greenpeace

An Anonymous cadre has hacked into major oil corporations' computers to protest against drilling in the Arctic. The attack, dubbed OpSaveTheArctic, has led to the lifting of email addresses and encrypted password hashes for about 500 email accounts at five leading oil exploration corporations: Exxon Mobil, Shell, BP, Gazprom and …

COMMENTS

This topic is closed for new posts.

That leading sentence

'An Anonymous cadre has hacked into major oil corporations' computers to protest against drilling in the Arctic.'

A few annoying, unemployed oiks hacked some oil company databases to draw attention to themselves.

FTFY

5
8
Coat

Re: That leading sentence

My thought exactly.

Does Anonymous now troll the news looking for excuses in an attempt to legitimize naughty behaviour?

If they *really* want to get some good press, they should hack themselves and leak their own email and ID lists...

(puts on flameproof coat)

1
0
Anonymous Coward

Err...

So, most of the commentards love Anonymous, but seem to hate Greenpeace, I wonder how this will play out...

4
1

Re: Err...

I'd pay actual real money* to go to an illegal backstreet hippy vs hacker cage fight and watch them beat the shit out of each other.

*Five quid max, plus I want a free drink!

2
1

Re: Err... I'll test that theory

I Love Greenpeace

3
3
Silver badge

Re: Err...

"I'd pay actual real money* to go to an illegal backstreet hippy vs hacker cage fight and watch them beat the shit out of each other."

Na not worth it. Hippies are all love and peace so won't fight and the hacker will be cowering in the corner because their not use to leaving their bedrooms. You'd have to spike their jolt cola/hash brownies with steroids and gorilla juice just to get any sort of action.

2
0
Anonymous Coward

Re: Err...

Plus the hacker may get sun on him.

1
0
Silver badge

@Thorne

Nah, just make it an all metal cage and add some 'letric juice.

0
0
Mushroom

NEVER...

....trust a hippy*!

That is all.

* possibly includes me

3
0
Silver badge
Big Brother

Anonymous Contradiction

If Anonymous truly exist then why are they so public about what they do ?

3
2
Silver badge

Now when something blows up

The oil companies will blame anonymous.

1
2
Bronze badge
Mushroom

Is this the first time Anon's done something to piss off Russian oligarchs?

...It might be the LAST tim, too.

3
0
Anonymous Coward

Greenpeace quote

"We know who you are. We know where you live. We know where you work.

And we be many, but you be few."

Greenpeace 2010

I guess they can now add "We know your email address"

0
0
Happy

Hippies?

Are they still around? The ones I know are all seniors now.

0
0
Silver badge

Re: Hippies?

As Cartman's says "Drugs are bad because if you take drugs, you're a hippy and hippies suck"

4
0
Headmaster

Hashing is not encryption

Why are they encrypting their password hashes, or is it the passwords that are encrypted then hashed?

The Reg seems to be confusing encryption with hashing quite a lot lately. Encryption results in a ciphertext that you can later decrypt, hashing results in a digest/checksum/hash code that is useful for checking that a given value matches the value that was originally hashed. Confuse the two and your encrypted cache of state secrets/porn collection/secret santa shopping list will turn out to be a set of completely useless (but conveniently smaller and easier to store) codes...

0
0
Silver badge

Re: Hashing is not encryption

Encryption is a flawed security solution. If you only encrypt your passwords they are not secure from man in the middle attacks. Even if you use a double ROT13 scheme it's no barrier to a determined attacker. You might as write "password123" on a postit note, stick it on your forehead and walk around the office asking if anyone has seen your password. That's literally how (in)secure encryption is these days.

Real professionals avoid encryption altogether and instead hash, generate checksums, and write down the resulting ciphertexts on one timed pads. Trust me I have worked in the IT security consultancy arena for 7 years so I know what I am talking about.

0
5
Anonymous Coward

Re: Hashing is not encryption

"Trust me I have worked in the IT security consultancy arena for 7 years so I know what I am talking about."

And yet you cite ROT13 as an encryption scheme....hmm...

Maybe not, eh?

3
0
Silver badge

Re: Hashing is not encryption

no I said *double* ROT13. ROT13 alone can be cracked in log(n) time with modern hardware. Double ROT13 is only vulnerable to quantum attacks and only the government have access to quantum computers (*as far as we know).

Then again the best way to secure data is always the simplest: hide it in the last place an attacker will think of looking. Many years ago before the dot com bubble burst I worked for a small upstart web firm as Head of Security. The company had some backup disks on site they wanted secured. Instead of buying an expensive $ safe I recommended the CEO just hide the disks in the trashcan. No-one would think the company critical data was in the trashcan! Unfortunately a few weeks later a new cleaner threw them out, but I mention that as an aside, the system worked it was the fault of our cleaning technician. Not part of my responsibilities.

After that we uploaded the files to an old machine and hid them in the recycle bin (same trick!)

2
4
Facepalm

Re: Hashing is not encryption

He said *double* ROT13... so rot13 your text and then rot13 it again and just try and guess how that might relate to the original unencrypted data. Actually I believe he is a person who works in security, as double rot13 is kind of a "trick" of the trade these days.

1
1
Trollface

Re: Hashing is not encryption

Nice troll, sir. *golf clap*

0
0
(Written by Reg staff) Silver badge

Re: Hashing is not encryption

I admire the pedantry; we do know the difference between encryption and hashing. But the word 'encrypted' by the dictionary simply means to 'conceal information or data' and it's there to hint to new readers, or the less technically able, what hashing means without having to bulk up every story with a detail description of how one-way functions work.

If you know what a hash is, brilliant. We've told you the passwords were hashed (quite possibly MD5d). If you don't, then 'encrypted' will help you out.

C.

0
1

Die, hippie, die!

You know, I had a guy in Jackson county. He had a little drum circle in his backyard. It turned into a drum circle four miles in diameter. You get a few hippies playing drums and next thing you know, you got yourself a colony.

1
0
Anonymous Coward

What a load of tree hugging hippy crap

They are worried about an oil spill in the Arctic.

What would happen if they didn't drill there?

The oil may eventually come to the surface anyway, like the tar pits in California, and be even more of a disaster as there would be no way of syphoning off the oil or stopping the leak...

1
2
Bronze badge
FAIL

added to Greenpeace's Save The Arctic petition page

And thereby pretty much invalidated the petition.

1
0
Anonymous Coward

Re: added to Greenpeace's Save The Arctic petition page

Wow, if they weren't Anonymous, something I could cheer for. But they are, so I can't.

0
0
This topic is closed for new posts.