LulzSec have struck again with the hacking of Bethesda, Bethesda resulting in encouraging users to reser their passwords following a hack on their servers. In their latest blog post they advise that no personal financial information or credit card data was stolen, but hackers had access to usernames, email addresses and passwords for all of the company's websites including community forums and Brink statistics site.
Strangely, Bethesda did not blame one party for the hack, only saying a "hacker group" was responsible. LulzSec have stepped forward fresh from their Sony hacking to claim responsibility for the attack. Through their Twitter account saying that they had set their sets on Bethesda and admitting they had been probing in Bethesda's network for over two months.
Once again, LulzSec have released a bunch of the stolen data to BitTorrent, the same method used with the Sony attack. It seems Bethesda's network was much harder to get into yet LulzSec managed to still break in.
Some weeks ago, we smashed into Brink with our heavy artillery Lulz Cannons and decided to switch to ninja mode. From our LFI entry point, we acquired command execution via local file inclusion of enemy fleet Apache vessel. We then found that the HTTPD had SSH auth keys, which let our ship SSH into other servers. See where this is going?
After mapping their internal network and thoroughly pillaging all of their servers, we grabbed all their source code and database passwords, which we proceeded to shift silently back to our storage deck." The torrent includes everything LulzSec swiped -- except the data of more than 200,000 Brink users. In a peculiar nod of respect, the group said it actually liked Bethesda and wanted to give it "one less thing to worry about.
LulzSec don't want the Lulz to stop there, so they've also posted some internal data from Senate.gov. All of this just a month after the US warned hackers that it would respond to cyber attacks as any other hostile attack, including military force (!) if deemed necessary.
This also comes just a week after Anonymous told NATO to back off saying "Do not make the mistake of challenging Anonymous".
Further Reading: Read and find more Hacking & Security news at our Hacking & Security news index page.