(The Hosting News) – Supporters of hacking group Anonymous may have found the tables turned on themselves following a report from Symantec on Friday.
In it, the security company detailed how those participating in DDoS attacks in support of the notorious hacking group were duped into leaking their own personal information. Such data pertained to banking and webmail credentials.
DDoS attacks make use of compromised computers (also known as a botnet) to redirect unprecedented amounts of traffic towards targeted websites with the intention of crashing them.
However, apparently some Anonymous supporters voluntarily allowed their computers to take part in the DDoS attacks. Downloading a tool not only allowed them to participate in operations, but acted as a Zeus Trojan, stealing personal information belonging to supporters, according to the Symantec report.
So exactly how were Anonymous supporters tricked into the ordeal? Look no further than PasteBin where Anonymous supporters had long included a link for downloading Slowaris, the DOS tool allowing Anonymous participants to join in DDoS operations.
An attacker apparently changed to link on January 20th to lead downloaders instead to a modified version of Slowaris containing a Trojan.
While outlining a timeline of exactly how the modified version became available, Symantec stated, “Not only will supporters be breaking the law by participating in DoS attacks on Anonymous hacktivism targets, but may also be at risk of having their online banking and email credentials stolen.”
The report continued, “The joining of malicious financial and identity fraud malware, Anonymous hacktivism objectives, and Anonymous supporter deception is a dangerous development for the online world. We will continue to watch for new developments.”
Hackers have long relied on PasteBin to communicate and reveal details regarding their attacks.
Meanwhile, Anonymous has proven to be one of the most effective hacking groups, responsible for high profile breaches on various government agencies and companies. Symantec’s report follows arrests late last month in which Anonymous members were arrested in countries including Spain, Chile, Colmbia and Argentina.
Interestingly enough, Symantec pointed out that the modified version of Slowlaris appeared on PasteBin the same day that authorities made arrests pertaining to file sharing site Megaupload. To view Symantec’s report on the matter, go here (symantec.com).