Secret-Spilling Sources at Risk Following Cryptome Breach

Secret-Spilling Sources at Risk Following Cryptome Breach
Secret-Spilling Sources at Risk Following Cryptome Breach

  This message is in MIME format.  The first part should be readable text,
  while the remaining parts are likely unreadable without MIME-aware tools.

Content-Transfer-Encoding: QUOTED-PRINTABLE

By Kim Zetter
Threat Level
October 5, 2010

Secret-spilling site Cryptome was hacked over the weekend, possibly 
exposing the identities of whistleblowers and other confidential 
sources, according to a hacker who contacted and claimed 
responsibility for the breach.

The hacker said two intruders from the group Kryogeniks breached the 
long-running site, where they gained access to a repository of secret 
files and correspondence. Among them, the hacker claimed, were the 
records of self-proclaimed WikiLeaks insiders who have been the source 
of several unconfirmed tips supposedly detailing internal WikiLeaks 
matters. could not confirm the identity of the hacker, who asked to be 
identified as =E2=80=9CRuxpin=E2=80=9D or =E2=80=9CXyrix.=E2=80=9D To verify his claims, the hacker 
showed screenshots of Cryptome founder John Young=E2=80=99s Earthlink 
account inbox and Cryptome=E2=80=99s directory. The latter showed two WikiLeaks 
file paths, a list of about 30 names and e-mail addresses of sources who 
communicated with Cryptome, and the contents of at least one e-mail 
between Young and a contributor from 2008. The 
contributor and Young have authenticated the e-mail.

The hacker said they broke into Cryptome using a stolen e-mail password 
for the Earthlink account belonging to Young. They then used the e-mail 
account to reset the password for his site=E2=80=99s hosting account. The hacker 
claims they copied 6.8 terabytes of data from Cryptome, though =E2=80=9Cno files 
were deleted or altered.=E2=80=9D


Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Subscribe to InfoSec News - 


Site design & layout copyright © 1986-2015 CodeGods