How LulzSec Ran the SevenProxies by @ThisIsGame0ver

1. How LulzSec Ran the SevenProxies -
2. Before we came along, on our much bigger, much more high tech boat with our High Orbit Ion Cannons!
3.  
4. by @ThisIsGame0ver
5.  
6. ############################################################################################################
7. As some of you may be aware, the prior good ol' people at the LulzBoat (aka LulzSec) commited Hacks ACROSS huge infrastructure, networks and more..
8.  
9. Well, we're here to tell you HOW -
10.  
11. ############################################################################################################
12. Senate Hack
13.  
14. Press Article - http://www.theregister.co.uk/2011/06/14/lulzsec_senate_bethesda_hack/
15.  
16. LulzSec used a now fixed Blind SQL Injection attack on the Senate's website, it's quite hilarious how the actual attack went about due to it being the "witness list" and all.
17.  
18. The SQLi method -
19. http://armed-services.senate.gov/e_witnesslist.cfm?id=<HERE>
20. ############################################################################################################
21. The Sun Hack
22.  
23. Zone-H: http://www.zone-h.org/mirror/id/14442272
24.  
25. extras.thesun.co.uk was previously not protected via an Akamai Reverse Proxy, it was a simple bruteforce on their SFTP which led to an engaging story left upon the sun's website.
26. ############################################################################################################
27. Battlefield Heroes Hack
28.  
29. The Battlefield Heroes attack wasn't even on the game itself, it was on the forum using a rather basic forum (PUBLIC) exploit.
30. EA was running MyBB 1.6.4, with the oh so common backdoor many off us have come to find packed into our lovely MS..
31.  
32. Exploit - http://www.exploit-db.com/exploits/17949/
33. ############################################################################################################
34. Bethesda/Brink Hack
35.  
36. LulzSec hacked 200,000 accounts from the Franchise at Bethesda, in reality it was again another Forum exploit.. God these companies get hacked via Forum exploits all the damn time..
37.  
38. How you may ask? Using the 3.0.1 SQLi exploit -
39. http://www.exploit-db.com/exploits/12586/
40.  
41. Then once they had escalated privileges to the admin, shelled the site gaining access to the SQL databases & files linking to the games themselves.
42. ############################################################################################################
43. Sony Hacks
44.  
45. The Sony hacks used SQL Injection, nothing easier then sticking in a comma and away you go, the thing that still interests me is how Sony has apparently "secured" their site, for example..
46.  
47. A simple DDoS Attack, the Sony.com.br website uses level3 servers to reverse proxy the site and "secure" it against ddos attacks..
48.  
49. Level3 IP: 199.83.128.57
50. But, it's not hard to go to the multiple subdomains that are not secured by this reverse proxy and find the ACTUAL -
51. Amazon Web Services IP: 174.129.232.33
52. ############################################################################################################
53. Arizona DPS Hack
54.  
55. Article: http://www.guardian.co.uk/technology/2011/jun/24/lulzsec-claims-attack-us-police-website
56.  
57. So LulzSec hacked into the DPS?
58. Well, not exactly..
59.  
60. They actually infected a rogue government computer in the HR department for the Department of Public Safety, in turn grabbing files, data and gaining access to the software used (e.g. Payroll software such as Sage which had employee information saved including bank numbers & sort codes)
61. ############################################################################################################
62.  
63. Compiled by @ThisIsGame0ver
64.  
65. #GameOver