CIA Website Brought Down by LulzSec
In what the group calls a "laugh", the Central Intelligence dot Gov website was brought down this week by the infamous LulzSec. For sometime the site was unable to load on multiple browsers and then the process was slow, to say the least. The CIA, which probably was facing much embarrassment, didn't comment on the story.
LulzSec, who has been referred to by many as hacktivist, is a group of hackers who have been wreaking havoc on many major websites. To them the whole thing is merely for fun. Some of the websites include PBS, Senate's website, Fox News, Sony (to include live PlayStation network), and various other sites. The part that has many wondering if it is "just for fun" is the fact that they publish user sensitive information to include credit card data.
So how do they get into websites that would be thought to be secure? According to InformationWeek.com the use of spear phishing is the technique utilized. This is simply a carefully crafted email designed to trick unsuspecting victims to download malicious code on the computer systems. Most of this is done through remote computers such as mobile devices and laptops. The concern that is brought up by many information security groups is the fact that the government is not using continual monitoring devices. One of the best ways to prevent attacks, such as the one on the CIA, is to ensure that the firmware is updated. The use of HTTPS versus HTTP is also another way used to prevent such attacks.
While many are left shaking their heads, the Twitter account and the tweet was sent out to this affect:
"Tango down - cia.gov - for the lulz."
The question that is lingering is who will be their next victim? When will the government and major websites wise up and implement more secure forms of protection for their websites?
Only time will tell what is next. Many suspect that the Federal Reserve is next on the list of LulzSec's to do list.