Support from readers like you keeps The Journal open.
You are visiting us because we have something you value. Independent, unbiased news that tells the truth. Advertising revenue goes some way to support our mission, but this year it has not been enough.
If you've seen value in our reporting, please contribute what you can, so we can continue to produce accurate and meaningful journalism. For everyone who needs it.
An account is an optional way to support the work we do. Find out more.
The LulzSec logo and Twitter avatar Twitter
hacktivists
Four LulzSec hackers sentenced to jail for "cowardly and vindictive" attacks
“You cared nothing for the privacy of others but did everything you could through your computer activities to hide your own identities while seeking publicity,” a judge told the four men.
8.57pm, 16 May 2013
12.4k
84
FOUR MEMBERS OF the LulzSec international hacking collective were sentenced to prison terms in Britain today for masterminding cyber atacks on major global institutions, including Sony Pictures and the CIA.
Ryan Cleary, 21, Jake Davis, 20, Mustafa Al-Bassam, 18, and Ryan Ackroyd, 26, saw themselves as “latter-day pirates” when they carried out the attacks on organisations which also included Rupert Murdoch’s top-selling British newspaper The Sun.
Cleary was jailed for 32 months, Ackroyd for 30 months and Davis for two years, while Al-Bassam was given a 20-month suspended sentence.
All four had admitted offences under the 1990 Computer Misuse Act.
The group were “hacktivists” with the LulzSec collective behind attacks that stole sensitive personal data such as emails, online passwords and credit card details.
LulzSec, an offshoot of the larger group Anonymous, existed from February to July 2011 and built up a huge international following, reaching 355,000 Twitter followers within two months.
They used social media and leaked details of attacks to journalists to further their quest of publicity, mainly through their chief publicist Davis.
The international group’s most high profile attack involved the extensive breach of Sony Pictures’ computer systems, which led to the personal data of thousands of Sony customers being posted online.
Sony lost details relating to 26.4 million customers in the attack which cost it €15 million, the court heard.
In June 2011 LulzSec took down the CIA.gov website in an attack masterminded by Al-Bassam, and the following month visitors to The Sun’s website were redirected to a spoof story about Murdoch committing suicide.
Advertisement
A photo of The Sun website after it was targeted by the hackers. (Yui Mok/PA Wire)
Britain’s National Health Service and Serious Organised Crime Agency were also victims of the group, who lived as far apart as London and the Shetland Islands, Britain’s most northerly outpost, and never met in person.
Stolen information was posted unencrypted on their website and file-sharing sites like Pirate Bay in 2011, the court had previously heard.
They also carried out distributed denial of service (DDoS) attacks, using linked networks of up to one million computers to overpower and crash websites.
The group’s activity collectively cost their targets millions of dollars and potentially left millions of people at risk from criminals.
“Serious criminal offences”
Andrew Hadik, lawyer for the Crown Prosecution Service, said the group’s actions had been “cowardly and vindictive”.
“Co-ordinating and carrying out these attacks from the safety of their own bedrooms may have made the group feel detached from the consequences of their actions,” he said.
They were in fact committing serious criminal offences for which they have been successfully prosecuted.
Sentencing the men at Southwark Crown Court in London, judge Deborah Taylor said some of their taunting of their victims made “chilling reading”.
“You cared nothing for the privacy of others but did everything you could through your computer activities to hide your own identities while seeking publicity,” she said.
I don’t for the life of me see how these people could be considered ‘heroes’, just because they launched a few DDoS attacks on websites associated to government or big business. They allowed criminals to get sensitive information on millions of ordinary people who could still be potentially defrauded.
I’m not sure that many people do call them heroes.
They got a lot of twitter followers not necessarily because people supported what they were doing but because they probably just wanted to see what they would do next.
LulzSec and Anonymous probably should be mentioned in the same sentence only if it’s made a bit more clear about the relationship there. That relationship is more about Anonymous developing into a more socially aware (for want of a better term) collective which annoyed some of those who would be more interested in chaos. LulzSec had some level of distaste for the “white knight” attitude and went out to actively hit on targets in a way that did more than try to make a point.
What, they’ll DoS your broadband? The guys got caught because they’re amateurs with egos. If they were any good they’d have covered their tracks well enough to not get caught.
Hanging out to dry, motto of the game in the crack down on hactivists.
Far as I know there’s no proof lulsec were responsible for the attack against Sony that exposed customers details (they did exploit them but was minor and not related) this is after Sony hired two security firms to investigate and no links were found…
What about their attack on Westboro Baptist Church? or support of wikileaks and many other attacks against agency’s and company’s that have zero respect for our privacy or rights?
There’s a bigger story here, this article has no insight.
everything you see on your screen is in effect downloaded to your PC. even this site.
just because you cant see a folder with files you recognise as such doesn’t mean it isn’t there, and there’s always the IP history which can be checked at any time,
but, yeah, as long as the pages you visit do not contain illegal material you have nothing to be afraid of.
Just make sure you have the latest bang-up-to-date patches on your Windows platform, and regularly run virus checks and keep that updated regularly – then you should all be good.
You can view sites, even if the materials are questionable, read, illegal, provided and this is the twist, if you download the content, then that’s asking for it basically.
ISP’s do monitor and sniff out traffic hitting on their servers before the site’s data reaches your computer…. just saying :)
Practice safe hex! :)
For those not in the know, hex is base 16 set of numbers and alphas
Tom, you obviously misunderstand how the web works. If you view something, it has been downloaded.
Safe hex? Wtf? What ha hex got todo with it?
And while updated OS and AV is good practice, don’t think that’s enough to keep safe online. Signature based detection hasn’t been effective for years.
ISP’s can’t easily snoop your https traffic, not at all if the server requires client certificates.
Barry – you’ve mis-read what I wrote – “ISP’s do monitor and sniff out traffic hitting on their servers before the site’s data reaches your computer” read that sentence again…
Safe hex is a play on the word safe sex…. hexadecimal is base 16 which computers understands, apart from octal and binary….
I know what hex is. I just didn’t know why you were referencing. Didn’t get the joke.
I did read it properly. I pointed out that with https the ISP can just see a TCP packet with an encrypted payload so really the only useful information is the source and destination IP/domain.
Oh, and btw, I’m being pedantic now but a computer no more understands base16 than it does base10 or base64. Computers work with binary. Hexadecimal, being 2^4, is just a more convenient way of representing binary than decimal.
Seriously? That’s the best you can do? Dream about calculators?
Whatever about me trying to look intelligent, you certainly aren’t trying. (Although I shouldn’t be surprised if you are trying but calculators is the biggest word you could think of).
In fairness, it’s not overly difficult to make everything you’ve looked at online disappear locally. Don’t even need to be particularly computer savvy. Nor is it particularly difficult to cover your tracks online. The fact these lads got caught shows they were overly arrogant in their activities.
This article is making me feel out of touch. I’m lying, it’s making me feel old. Who is willing to admit that they can’t keep up with modern lingo?. Me, that’s who. A strange crossroads has been reached. An indigenous English speaking person now needs a translator, to translate the hybrid English/ computer language. Save yourselves, leave me behind, all I ask is that you leave me a bullet in the chamber for me.
#includeint main(int argc,char **argv){ while(1){printf(“First rule of hacking is you do not talk about it!\nSecond rule, refer to first rule!\n”);}return 0;}
In June 2011 LulzSec took down the CIA.gov website in an attack masterminded by Al-Bassam
…
Cleary was jailed for 32 months, Ackroyd for 30 months and Davis for two years, while Al-Bassam was given a 20-month suspended sentence
Menshealth.com did a survey. 87% of men have viewed porn online in the past year. Lock us up Denise. Hope the ban-guards don’t shirk in their responsibility of locking up their male colleagues!!
When women watch porn it’s obviously because they have been led to believe that women are inferior by the patriarchy that infests all MANkind and therefore want to be more like their ‘betters’ and engage in watching porn. . . . Or something like that.
She mentioned dirty porn. This is not illegal in Ireland and yet she calls for ceiminal proceedings. If she specified a particular aspect (i.e. child porn) that was I would not question it.
Not sure they were caught because of leaving an online trail, the guy in the U.S. was caught and gave the rest of them up, old style. Wouldn’t community service be much better and out their obvious talents to positive use?
These kids are most likely not the main people behind these attacks. Young lads persuaded to “hack” for Lulzec to cover the tracks of the main guys. Anyway hackers from these collectives have worked with the FBI to gather evidence against their own online friends after being caught so they get lighter sentences. A bunch of individuals is all they are.
Interestingly, what hasn’t been mentioned here is that Cleary suffered from Asperger’s syndrome and Davis had been diagnosed with depression. That said, Cleary was also found guilty of accessing child pornography, which lessens my sympathy for him somewhat.
Man deported from Ireland on Nigeria flight earlier this year wins appeal to return
Eoghan Dalton
7 hrs ago
33.3k
InvestigatesSeal harm
Snap happy tourists harming seals by picking up pups for selfies and flying drones
Patricia Devlin
2 hrs ago
942
7
Animal Welfare
'Awful to watch': Outrage over video of horse and trap crashing into car on Dublin road
18 hrs ago
35.8k
Your Cookies. Your Choice.
Cookies help provide our news service while also enabling the advertising needed to fund this work.
We categorise cookies as Necessary, Performance (used to analyse the site performance) and Targeting (used to target advertising which helps us keep this service free).
We and our 220 partners store and access personal data, like browsing data or unique identifiers, on your device. Selecting Accept All enables tracking technologies to support the purposes shown under we and our partners process data to provide. If trackers are disabled, some content and ads you see may not be as relevant to you. You can resurface this menu to change your choices or withdraw consent at any time by clicking the Cookie Preferences link on the bottom of the webpage . Your choices will have effect within our Website. For more details, refer to our Privacy Policy.
We and our vendors process data for the following purposes:
Use precise geolocation data. Actively scan device characteristics for identification. Store and/or access information on a device. Personalised advertising and content, advertising and content measurement, audience research and services development.
Cookies Preference Centre
We process your data to deliver content or advertisements and measure the delivery of such content or advertisements to extract insights about our website. We share this information with our partners on the basis of consent. You may exercise your right to consent, based on a specific purpose below or at a partner level in the link under each purpose. Some vendors may process your data based on their legitimate interests, which does not require your consent. You cannot object to tracking technologies placed to ensure security, prevent fraud, fix errors, or deliver and present advertising and content, and precise geolocation data and active scanning of device characteristics for identification may be used to support this purpose. This exception does not apply to targeted advertising. These choices will be signaled to our vendors participating in the Transparency and Consent Framework. The choices you make regarding the purposes and vendors listed in this notice are saved and stored locally on your device for a maximum duration of 1 year.
Manage Consent Preferences
Necessary Cookies
Always Active
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work.
Social Media Cookies
These cookies are set by a range of social media services that we have added to the site to enable you to share our content with your friends and networks. They are capable of tracking your browser across other sites and building up a profile of your interests. This may impact the content and messages you see on other websites you visit. If you do not allow these cookies you may not be able to use or see these sharing tools.
Targeting Cookies
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Functional Cookies
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then these services may not function properly.
Performance Cookies
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not be able to monitor our performance.
Store and/or access information on a device 154 partners can use this purpose
Cookies, device or similar online identifiers (e.g. login-based identifiers, randomly assigned identifiers, network based identifiers) together with other information (e.g. browser type and information, language, screen size, supported technologies etc.) can be stored or read on your device to recognise it each time it connects to an app or to a website, for one or several of the purposes presented here.
Personalised advertising and content, advertising and content measurement, audience research and services development 201 partners can use this purpose
Use limited data to select advertising 163 partners can use this purpose
Advertising presented to you on this service can be based on limited data, such as the website or app you are using, your non-precise location, your device type or which content you are (or have been) interacting with (for example, to limit the number of times an ad is presented to you).
Create profiles for personalised advertising 124 partners can use this purpose
Information about your activity on this service (such as forms you submit, content you look at) can be stored and combined with other information about you (for example, information from your previous activity on this service and other websites or apps) or similar users. This is then used to build or improve a profile about you (that might include possible interests and personal aspects). Your profile can be used (also later) to present advertising that appears more relevant based on your possible interests by this and other entities.
Use profiles to select personalised advertising 125 partners can use this purpose
Advertising presented to you on this service can be based on your advertising profiles, which can reflect your activity on this service or other websites or apps (like the forms you submit, content you look at), possible interests and personal aspects.
Create profiles to personalise content 52 partners can use this purpose
Information about your activity on this service (for instance, forms you submit, non-advertising content you look at) can be stored and combined with other information about you (such as your previous activity on this service or other websites or apps) or similar users. This is then used to build or improve a profile about you (which might for example include possible interests and personal aspects). Your profile can be used (also later) to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests.
Use profiles to select personalised content 49 partners can use this purpose
Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services (for instance, the forms you submit, content you look at), possible interests and personal aspects. This can for example be used to adapt the order in which content is shown to you, so that it is even easier for you to find (non-advertising) content that matches your interests.
Measure advertising performance 181 partners can use this purpose
Information regarding which advertising is presented to you and how you interact with it can be used to determine how well an advert has worked for you or other users and whether the goals of the advertising were reached. For instance, whether you saw an ad, whether you clicked on it, whether it led you to buy a product or visit a website, etc. This is very helpful to understand the relevance of advertising campaigns.
Measure content performance 79 partners can use this purpose
Information regarding which content is presented to you and how you interact with it can be used to determine whether the (non-advertising) content e.g. reached its intended audience and matched your interests. For instance, whether you read an article, watch a video, listen to a podcast or look at a product description, how long you spent on this service and the web pages you visit etc. This is very helpful to understand the relevance of (non-advertising) content that is shown to you.
Understand audiences through statistics or combinations of data from different sources 113 partners can use this purpose
Reports can be generated based on the combination of data sets (like user profiles, statistics, market research, analytics data) regarding your interactions and those of other users with advertising or (non-advertising) content to identify common characteristics (for instance, to determine which target audiences are more receptive to an ad campaign or to certain contents).
Develop and improve services 119 partners can use this purpose
Information about your activity on this service, such as your interaction with ads or content, can be very helpful to improve products and services and to build new products and services based on user interactions, the type of audience, etc. This specific purpose does not include the development or improvement of user profiles and identifiers.
Use limited data to select content 52 partners can use this purpose
Content presented to you on this service can be based on limited data, such as the website or app you are using, your non-precise location, your device type, or which content you are (or have been) interacting with (for example, to limit the number of times a video or an article is presented to you).
Use precise geolocation data 67 partners can use this special feature
With your acceptance, your precise location (within a radius of less than 500 metres) may be used in support of the purposes explained in this notice.
Actively scan device characteristics for identification 38 partners can use this special feature
With your acceptance, certain characteristics specific to your device might be requested and used to distinguish it from other devices (such as the installed fonts or plugins, the resolution of your screen) in support of the purposes explained in this notice.
Ensure security, prevent and detect fraud, and fix errors 126 partners can use this special purpose
Always Active
Your data can be used to monitor for and prevent unusual and possibly fraudulent activity (for example, regarding advertising, ad clicks by bots), and ensure systems and processes work properly and securely. It can also be used to correct any problems you, the publisher or the advertiser may encounter in the delivery of content and ads and in your interaction with them.
Deliver and present advertising and content 128 partners can use this special purpose
Always Active
Certain information (like an IP address or device capabilities) is used to ensure the technical compatibility of the content or advertising, and to facilitate the transmission of the content or ad to your device.
Match and combine data from other data sources 96 partners can use this feature
Always Active
Information about your activity on this service may be matched and combined with other information relating to you and originating from various sources (for instance your activity on a separate online service, your use of a loyalty card in-store, or your answers to a survey), in support of the purposes explained in this notice.
Link different devices 69 partners can use this feature
Always Active
In support of the purposes explained in this notice, your device might be considered as likely linked to other devices that belong to you or your household (for instance because you are logged in to the same service on both your phone and your computer, or because you may use the same Internet connection on both devices).
Identify devices based on information transmitted automatically 120 partners can use this feature
Always Active
Your device might be distinguished from other devices based on information it automatically sends when accessing the Internet (for instance, the IP address of your Internet connection or the type of browser you are using) in support of the purposes exposed in this notice.
Save and communicate privacy choices 108 partners can use this special purpose
Always Active
The choices you make regarding the purposes and entities listed in this notice are saved and made available to those entities in the form of digital signals (such as a string of characters). This is necessary in order to enable both this service and those entities to respect such choices.
have your say