Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

DHS warns of planned Anonymous attacks

Bulletin from feds highlights group's Occupy Wall Street, Operation Facebook, Project Mayhem campaigns

The U.S. Department of Homeland Security today issued a somewhat unusual bulletin warning the security community about the planned activities of hacking collective Anonymous over the next few months.

The bulletin, issued by the DHS National Cybersecurity and Communications Integration Center (NCCIC), warns financial services companies especially to be on the lookout for attempts by Anonymous to "solicit ideologically dissatisfied, sympathetic employees" to their cause.

Anonymous has recently used Twitter to try and persuade dissatisfied employees within the financial sector to give them information and access. Though such attempts appear to have been largely unsuccessful so far, "unwilling coercion through embarrassment or blackmail may be a risk to personnel," the bulletin warned.

The unclassified DHS communique is addressed broadly to those in charge of cybersecurity and critical infrastructure protection and also warns about new tools that Anonymous has said it plans to use in launching future attacks.

One of the attack tools highlighted in the alert is dubbed #RefRef, which is said to be capable of using a server's resources and processing power to conduct a denial of service attack against itself.

"Anonymous has stated publicly that the tool will be ready for wider use by the group in September 2011," the DHS said. "But though there have been several publicly available tools that claim to be versions of #RefRef, so far it's unclear "what the true capabilities of #RefRef are."

The bulletin also cites the so-called Apache Killer tool that can be used to launch denial of service attacks. The DHS alert also warns of three cyber attacks and civil protests it says are planned by Anonymous and affiliated groups.

The first attack, dubbed Occupy Wall Street (OWS) is scheduled for Sept. 17.

The so-called 'Day of Rage' protest was first announced by a group called Adbusters in July and is being actively supported by Anonymous. The organizers of OWS hope to get about 20,000 individuals to gather on Wall Street on that day to protest various U.S. government policies.

The protest is being coordinated through Adbuster's website as well as via an Anonymous YouTube video that exhorts followers to "flood into lower Manhattan, set up tents, kitchens, peaceful barricades and occupy Wall Street for a few months," the DHS noted in its alert.

Similar rallies targeting financial districts are being planned in Madrid, Milan, London, Paris and San Francisco, it said,

Adbusters is planning another protest in October. That event, to mark the 10th anniversary of war in Afghanistan, is slated to be held at the Washington DC National Mall.

The two other planned attacks by Anonymous that are highlighted in the bulletin are, Operation Facebook a November 11 protest targeting the social media site for its alleged privacy violations, and Project Mayhem, scheduled for Dec 21, 2012.

Though there has been little dialogue or hints about the specific tactics, techniques and procedures that Anonymous plans to employ for Project Mayhem there are indications that it could involve physical disruption and targeting of information systems.

The name Project Mayhem is derived from the movie Fight Club in which "the main character is ultimately responsible for destroying buildings belonging to major financial institutions with explosives," the bulletin said.

The bulletin is testimony of sorts to the kind of attention that Anonymous has managed to attract following cyberattacks and related protests in recent years. The group has been associated with a string of high-profile attacks against organizations such as HB Gary, Booz-Allen Hamilton, and the Bay Area Rapid Transit agency

Though members of Anonymous are thought to have been associated with several "maliciously intolerant cyber and physical incidents" in the past, of late they have evolved to "what appears to be a hactivist agenda."

"Anonymous has shown through recently reported incidents that it has members who have relatively more advanced technical capabilities who can also marshal large numbers of willing, but less technical, participants for DDOS activities," the DHS said.

Jaikumar Vijayan covers data security and privacy issues, financial services security and e-voting for Computerworld. Follow Jaikumar on Twitter at @jaivijayan, or subscribe to Jaikumar's RSS feed . His e-mail address is jvijayan@computerworld.com.

Read more about security in Computerworld's Security Topic Center.

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Apache, Booz, Facebook, Killer, Manhattan, RSA, Topic, Wall Street
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: government, Government/Industries, security, twitter, U.S. Department of Homeland Security
Latest Blog Posts
Whitepapers
  • Automating Your Processes to Outperform Your Competition
    Welcome to Volume Three of the “Intelligent Guide to Enterprise BPM.” Get ready for an education in automation—Process Automation, that is. This white paper goes into detail about the Process Automation entry point into an Enterprise Business Process Management (BPM) program. Read on to learn how Process Automation opens up new ways to help your business do things faster—like open up a new sales channel or deliver customer orders. Discover how Process Automation enables your business to run smoother and consistently in an orchestrated way. With a true Enterprise BPM solution, you can automate newly designed processes far easier than starting from scratch.
    Learn more »
  • Mobile Security: Don’t leave employees to their own devices
    No organisation can afford to ignore the rising march of consumer devices in today’s workplace. But neither can they ignore the risks that consumerisation brings. Companies must adapt IT and security strategies accordingly, balancing the needs and demands of more flexible work models with the often thorough information security safeguards that were implemented to protect the business in the first place. Fortunately, there are ways of doing just that and achieving a balance that works for all concerned.
    Learn more »
  • Six tips for choosing a unified threat management (UTM) solution
    As network security grows more complex, businesses are demanding the simplicity of unified threat management (UTM). Businesses like yours are replacing multiple, outdated and costly appliances from different vendors with a single, reliable UTM solution. The best solutions offer a more powerful way to manage network security today and in the future. UTM also promises to slash your network security management efforts and hardware costs. This whitepaper offers you detailed advice on how to choose the comprehensive unified threat management (UTM) that best suits your business.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments