Wednesday, October 6, 2010

Hackers Hijack Cryptome and Delete Everything

The longstanding whistleblower website has been hacked during the weekend and all of the 54,000 files hosted on it have been deleted.

Cryptome publishes sensitive leaked documents and is ran by a long-time civil liberties activist named John Young, who co-founded the site in 1996.

The attack began during the early hours of October 2nd with the hacking of an Earthlink email address associated with the domain name.

The hackers then contacted the site's hosting provider, Network Solutions, from the compromised mailbox and requested information about the Cryptome's accounts.

There is no information to suggest that Network Solutions gave hackers control over the site's management panel, but they did somehow manage to get in.

They proceeded to delete all of the 54,000 files (around 7 GB) hosted in the account, changed the password and replaced the index page.

Theere were two separate versions of rogue home pages uploaded. One credited a hacker named "Trainreq" for the attack and the other one calling himself "RuxPin".

The pages reference "EBK" and "Defiant," two of the hackers convicted for hijacking the domain back in May 2008.

Kryogeniks, the group of defacers "EBK" and "Defiant" were members of, is also mentioned and so is Bradley Manning, the Army intelligence analyst suspected of leaking classified data to Wikileaks.

"A person wrote claiming to know who did the hack. No way to know if this claim is true. Hackers, like spies, often blame one another to cover their tracks.
"Blocking attacks is nearly impossible due to the purposefully weak security of the Internet. Nearly all security methods are bogus.

"A competent hacker or spy, or the two working together, can penetrate easily. We monitor and keep back-ups ready. And do not trust our ISP, email provider and officials to tell the truth or protect us," a statement from Cryptome reads.

This is the second successful hack in fourteen years. The previous incident occurred in 2003 and also involved all files being deleted.

Back in February, the site was temporarily suspended by Network Solutions due to a DMCA notice from Microsoft regarding the company's "Global Criminal Compliance Handbook," which Cryptome published.

Then in March, PayPal suspended the account used by the site to receive donations from users, forcing John Young to refund $5,300.


IMO i highly doubt it was trainreq who did this, and if they did they aren't true hackers. merely puppets being employed by somebody to do their dirty work. no hacker in their right mind would delete all the files off a whistleblower website unless their was incriminating evidence against them. They usually back up the files and either hold it for ransom or simply give it back after they have gained some notoriety.

prepare for the new generation of hackers, hacking against we the people. they will make sure our internets are policed and profit from it.


  1. shit.. that is very bad...
    be strong

  2. Well, the hacker isn't to bright, looks like he never heard of backups.

  3. Unfortunate. The Internet is the last stand against corruption, at least the best tool at the moment.

  4. I agree with your analysis, but its still hard to tell, peoples true motives are not aways so clear until the dust has settled and no one cares anymore.

  5. and i was worried about my facebook getting hacked... lol

  6. Yikes. The last thing the people of this world is hackers out to destroy truth and freedom.

  7. Why would they hack a site like this? Go hack a site that deserves it.

  8. Hackers fighting hackers. Hackers for hire. Twas bound to happen.

  9. I liked your perspective in this one... I'm going to have to agree with you

  10. whoever it is, he is one tough badass

  11. Hackers gonna hack.
    This will always happen.

  12. I prefer hackers running our internet rather then a government.

  13. yep ty i checked the ToS too and well i was rlly a fuckin spammer xD anyway i'm asking for a new check of the list from google but i think they'll deny my reactivation request

  14. Yesterday, hackers = thirst for knowledge
    Today, hackers = hungry for money