back to article Hacktivists lift emails, passwords from oil biz in support of Greenpeace

An Anonymous cadre has hacked into major oil corporations' computers to protest against drilling in the Arctic. The attack, dubbed OpSaveTheArctic, has led to the lifting of email addresses and encrypted password hashes for about 500 email accounts at five leading oil exploration corporations: Exxon Mobil, Shell, BP, Gazprom …

COMMENTS

This topic is closed for new posts.
  1. John A Blackley

    That leading sentence

    'An Anonymous cadre has hacked into major oil corporations' computers to protest against drilling in the Arctic.'

    A few annoying, unemployed oiks hacked some oil company databases to draw attention to themselves.

    FTFY

    1. Edwin
      Coat

      Re: That leading sentence

      My thought exactly.

      Does Anonymous now troll the news looking for excuses in an attempt to legitimize naughty behaviour?

      If they *really* want to get some good press, they should hack themselves and leak their own email and ID lists...

      (puts on flameproof coat)

  2. Anonymous Coward
    Anonymous Coward

    Err...

    So, most of the commentards love Anonymous, but seem to hate Greenpeace, I wonder how this will play out...

    1. LinkOfHyrule

      Re: Err...

      I'd pay actual real money* to go to an illegal backstreet hippy vs hacker cage fight and watch them beat the shit out of each other.

      *Five quid max, plus I want a free drink!

      1. Thorne

        Re: Err...

        "I'd pay actual real money* to go to an illegal backstreet hippy vs hacker cage fight and watch them beat the shit out of each other."

        Na not worth it. Hippies are all love and peace so won't fight and the hacker will be cowering in the corner because their not use to leaving their bedrooms. You'd have to spike their jolt cola/hash brownies with steroids and gorilla juice just to get any sort of action.

        1. Anonymous Coward
          Anonymous Coward

          Re: Err...

          Plus the hacker may get sun on him.

        2. Tom 13

          @Thorne

          Nah, just make it an all metal cage and add some 'letric juice.

    2. edge_e

      Re: Err... I'll test that theory

      I Love Greenpeace

  3. CADmonkey
    Mushroom

    NEVER...

    ....trust a hippy*!

    That is all.

    * possibly includes me

  4. Khaptain
    Big Brother

    Anonymous Contradiction

    If Anonymous truly exist then why are they so public about what they do ?

  5. Tom 35

    Now when something blows up

    The oil companies will blame anonymous.

  6. Mike Moyle
    Mushroom

    Is this the first time Anon's done something to piss off Russian oligarchs?

    ...It might be the LAST tim, too.

  7. Anonymous Coward
    Anonymous Coward

    Greenpeace quote

    "We know who you are. We know where you live. We know where you work.

    And we be many, but you be few."

    Greenpeace 2010

    I guess they can now add "We know your email address"

  8. Sureo
    Happy

    Hippies?

    Are they still around? The ones I know are all seniors now.

    1. Thorne

      Re: Hippies?

      As Cartman's says "Drugs are bad because if you take drugs, you're a hippy and hippies suck"

  9. Invidious Aardvark
    Headmaster

    Hashing is not encryption

    Why are they encrypting their password hashes, or is it the passwords that are encrypted then hashed?

    The Reg seems to be confusing encryption with hashing quite a lot lately. Encryption results in a ciphertext that you can later decrypt, hashing results in a digest/checksum/hash code that is useful for checking that a given value matches the value that was originally hashed. Confuse the two and your encrypted cache of state secrets/porn collection/secret santa shopping list will turn out to be a set of completely useless (but conveniently smaller and easier to store) codes...

    1. NomNomNom

      Re: Hashing is not encryption

      Encryption is a flawed security solution. If you only encrypt your passwords they are not secure from man in the middle attacks. Even if you use a double ROT13 scheme it's no barrier to a determined attacker. You might as write "password123" on a postit note, stick it on your forehead and walk around the office asking if anyone has seen your password. That's literally how (in)secure encryption is these days.

      Real professionals avoid encryption altogether and instead hash, generate checksums, and write down the resulting ciphertexts on one timed pads. Trust me I have worked in the IT security consultancy arena for 7 years so I know what I am talking about.

      1. Anonymous Coward
        Anonymous Coward

        Re: Hashing is not encryption

        "Trust me I have worked in the IT security consultancy arena for 7 years so I know what I am talking about."

        And yet you cite ROT13 as an encryption scheme....hmm...

        Maybe not, eh?

        1. NomNomNom

          Re: Hashing is not encryption

          no I said *double* ROT13. ROT13 alone can be cracked in log(n) time with modern hardware. Double ROT13 is only vulnerable to quantum attacks and only the government have access to quantum computers (*as far as we know).

          Then again the best way to secure data is always the simplest: hide it in the last place an attacker will think of looking. Many years ago before the dot com bubble burst I worked for a small upstart web firm as Head of Security. The company had some backup disks on site they wanted secured. Instead of buying an expensive $ safe I recommended the CEO just hide the disks in the trashcan. No-one would think the company critical data was in the trashcan! Unfortunately a few weeks later a new cleaner threw them out, but I mention that as an aside, the system worked it was the fault of our cleaning technician. Not part of my responsibilities.

          After that we uploaded the files to an old machine and hid them in the recycle bin (same trick!)

          1. AdamWill
            Trollface

            Re: Hashing is not encryption

            Nice troll, sir. *golf clap*

        2. InsaneGeek
          Facepalm

          Re: Hashing is not encryption

          He said *double* ROT13... so rot13 your text and then rot13 it again and just try and guess how that might relate to the original unencrypted data. Actually I believe he is a person who works in security, as double rot13 is kind of a "trick" of the trade these days.

    2. diodesign (Written by Reg staff) Silver badge

      Re: Hashing is not encryption

      I admire the pedantry; we do know the difference between encryption and hashing. But the word 'encrypted' by the dictionary simply means to 'conceal information or data' and it's there to hint to new readers, or the less technically able, what hashing means without having to bulk up every story with a detail description of how one-way functions work.

      If you know what a hash is, brilliant. We've told you the passwords were hashed (quite possibly MD5d). If you don't, then 'encrypted' will help you out.

      C.

  10. Potemkine Silver badge

    Die, hippie, die!

    You know, I had a guy in Jackson county. He had a little drum circle in his backyard. It turned into a drum circle four miles in diameter. You get a few hippies playing drums and next thing you know, you got yourself a colony.

  11. Anonymous Coward
    Anonymous Coward

    What a load of tree hugging hippy crap

    They are worried about an oil spill in the Arctic.

    What would happen if they didn't drill there?

    The oil may eventually come to the surface anyway, like the tar pits in California, and be even more of a disaster as there would be no way of syphoning off the oil or stopping the leak...

  12. vic 4
    FAIL

    added to Greenpeace's Save The Arctic petition page

    And thereby pretty much invalidated the petition.

    1. Anonymous Coward
      Anonymous Coward

      Re: added to Greenpeace's Save The Arctic petition page

      Wow, if they weren't Anonymous, something I could cheer for. But they are, so I can't.

This topic is closed for new posts.

Biting the hand that feeds IT © 1998–2022