Anonymous Releases "Super Secret Security Handbook"

Thursday, June 30, 2011



The rogue hacker movement Anonymous has released the "OpNewBlood Super Secret Security Handbook" (pdf) in an effort to recruit more would-be hacktivist types to further the Internet anarchy cause.

The tutorial-style guide instructs users on multiple subjects, particularly how to set up secure Internet Relay Chat (IRC) access for group discussion participation.

"If you have not gone through the IRC chat client setup for your operating system, we recommend you go back and get started there," the guide states.


The publication will edify aspiring armchair hackers on methods used to obscure one's identity while conducting operations online and avoid exposing one's identity to rival hackers and law enforcement.

The guide is replete with step-by-step instructions and peppered with tips on how to avoid missteps in the process, as well as warnings for those who might me getting in over their head from a technical standpoint:

"Always be cautious when tinkering with systems you don't fully understand, as this may lead to undesirable results, detection, and in extreme cases system failure or legal trouble... While this guide does attempt to put it simply and in laymans terms, you the user are ultimatly [sic] responsible for the security of your own systems," the publication warns.

The publication is more evidence that hacktivist groups like Anonymous and the now supposedly defunct LulzSec are shifting tactics by moving away from conducting offensive operations themselves, and instead may be seeking to educate and enable others take up the cause.

Recently we have also seen the emergence of the Anonymous-backed School4lulz, a resource for hi-tech hooligans to learn the finer art of hacking, cross-site scripting, SQL injections, botnet herding, doxing, and tools of the trade.

By concentrating on instruction and inspiration, the core leadership of these hacker collectives can effectively remove themselves as primary targets for law enforcement and anti-AntiSec hackers like The Jester (th3j35t3r), The A-Team, and the Web Ninjas, and instead encourage their less-savvy teen minions to commit the attacks and take the heat.

Possibly Related Articles:
Headlines Anonymous Hacktivist hackers Lulzsec Anarchy OpNewBlood Handbook
Post Rating I Like this!
Kevin McAleavey I saw a copy of this about a week ago and thought it humorous and childish. The "content" of the PDF though demonstrates just how unsophisticated the attackers are with their GUI tools and their ability to google for giggles.

Meanwhile, professional criminals are taking advantage of the same abilities with the exception that they're not issuing press releases. Viz: TDSS.
Michael Thibodeaux Kevin, I agree on the childish remark to a degree. At this point the group has gone from being children to teenagers (possible Adulthood). They are gaining momentum and just about every cybercrime office in the world is bringing in the best heads to gain insite to this group.

The second remark on cybercryminals is great. While Anonymous is creating press, the real criminals are taking advantage of the vulnerabilities.
Kevin McAleavey There are many times I miss doing this for a living - when we did our BOClean product I put our effort into learning all about the coders and working with volunteers so that as soon as they released anything new, we had it covered.

If someone were paying me for the time, I'd do it all over again. The hunt was actually fun when the pieces started coming together finally. And no, I'm still not impressed with these kids myself since I've been watching them for a couple of months now to be sure that our product doesn't fall victim to their shens.
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.