List of security hacking incidents

From Wikipedia, the free encyclopedia
Jump to navigation Jump to search

The list of security hacking incidents covers important or noteworthy events in the history of security hacking and cracking.

1900[edit]

1903[edit]

1930s[edit]

1932[edit]

1939[edit]

1940s[edit]

1943[edit]

1949[edit]

  • The theory that underlies computer viruses was first made public in 1949, when computer pioneer John von Neumann presented a paper titled "Theory and Organization of Complicated Automata". In the paper von Neumann speculated that computer programs could reproduce themselves.[3]

1950s[edit]

1955[edit]

  • At MIT, "hack" first came to mean fussing with machines. The minutes of an April 1955, meeting of the Tech Model Railroad Club state that "Mr. Eccles requests that anyone working or hacking on the electrical system turn the power off to avoid fuse blowing."[4]

1957[edit]

  • Joe "Joybubbles" Engressia, a blind seven-year-old boy with perfect pitch, discovered that whistling the fourth E above middle C (a frequency of 2600 Hz) would interfere with AT&T's automated telephone systems, thereby inadvertently opening the door for phreaking.

1960s[edit]

  • Various phreaking boxes are used to interact with automated telephone systems.

1963[edit]

1965[edit]

  • William D. Mathews from MIT found a vulnerability in a CTSS running on an IBM 7094. The standard text editor on the system was designed to be used by one user at a time, working in one directory, and so created a temporary file with a constant name for all instantiations of the editor. The flaw was discovered when two system programmers were editing at the same time and the temporary files for the message-of-the day and the password file became swapped, causing the contents of the system CTSS password file to display to any user logging into the system.[8][9][10][11]

1967[edit]

  • The first known incidence of network penetration hacking took place when members of a computer club at a suburban Chicago area high school were provided access to IBM's APL network. In the Fall of 1967, IBM (through Science Research Associates) approached Evanston Township High School with the offer of four 2741 Selectric teletypewriter based terminals with dial-up modem connectivity to an experimental computer system which implemented an early version of the APL programming language. The APL network system was structured in Workspaces which were assigned to various clients using the system. Working independently, the students quickly learned the language and the system. They were free to explore the system, often using existing code available in public Workspaces as models for their own creations. Eventually, curiosity drove the students to explore the system's wider context. This first informal network penetration effort was later acknowledged as helping harden the security of one of the first publicly accessible networks:[12]

    Science Research Associates undertook to write a full APL system for the IBM 1500. They modeled their system after APL/360, which had by that time been developed and seen substantial use inside of IBM, using code borrowed from MAT/1500 where possible. In their documentation they acknowledge their gratitude to "a number of high school students for their compulsion to bomb the system". This was an early example of a kind of sportive, but very effective, debugging that was often repeated in the evolution of APL systems.

1970s[edit]

1971[edit]

1979[edit]

1980s[edit]

1980[edit]

technical experts; skilled, often young, computer programmers, who almost whimsically probe the defenses of a computer system, searching out the limits and the possibilities of the machine. Despite their seemingly subversive role, hackers are a recognized asset in the computer industry, often highly prized

The newspaper describes white hat activities as part of a "mischievous but perversely positive 'hacker' tradition". When a National CSS employee revealed the existence of his password cracker, which he had used on customer accounts, the company chastised him not for writing the software but for not disclosing it sooner. The letter of reprimand stated that "The Company realizes the benefit to NCSS and in fact encourages the efforts of employees to identify security weaknesses to the VP, the directory, and other sensitive software in files".[17]

1981[edit]

  • Chaos Computer Club forms in Germany.
  • Ian Murphy aka Captain Zap, was the first cracker to be tried and convicted as a felon. Murphy broke into AT&T's computers in 1981 and changed the internal clocks that metered billing rates. People were getting late-night discount rates when they called at midday. Of course, the bargain-seekers who waited until midnight to call long distance were hit with high bills.[18]

1983[edit]

1984[edit]

1985[edit]

  • KILOBAUD is re-organized into The P.H.I.R.M., and begins sysopping hundreds of BBSs throughout the United States, Canada, and Europe.
  • The online 'zine Phrack is established.
  • The Hacker's Handbook is published in the UK.[citation needed]
  • The FBI, Secret Service, Middlesex County NJ Prosecutor's Office and various local law enforcement agencies execute seven search warrants concurrently across New Jersey on July 12, 1985, seizing equipment from BBS operators and users alike for "complicity in computer theft",[24] under a newly passed, and yet untested criminal statute.[25] This is famously known as the Private Sector Bust,[26] or the 2600 BBS Seizure,[27] and implicated the Private Sector BBS sysop, Store Manager (also a BBS sysop), Beowulf, Red Barchetta, The Vampire, the NJ Hack Shack BBS sysop, and the Treasure Chest BBS sysop.

1986[edit]

1987[edit]

1988[edit]

1989[edit]

1990s[edit]

1990[edit]

  • Operation Sundevil introduced. After a prolonged sting investigation, Secret Service agents swoop down on organizers and prominent members of BBSs in 14 U.S. cities including the Legion of Doom, conducting early-morning raids and arrests. The arrests involve and are aimed at cracking down on credit-card theft and telephone and wire fraud. The result is a breakdown in the hacking community, with members informing on each other in exchange for immunity. The offices of Steve Jackson Games are also raided, and the role-playing sourcebook GURPS Cyberpunk is confiscated, possibly because the government fears it is a "handbook for computer crime". Legal battles arise that prompt the formation of the Electronic Frontier Foundation, including the trial of Knight Lightning.
  • Australian federal police tracking Realm members Phoenix, Electron and Nom are the first in the world to use a remote data intercept to gain evidence for a computer crime prosecution.[34]
  • The Computer Misuse Act 1990 is passed in the United Kingdom, criminalising any unauthorised access to computer systems.

1992[edit]

1993[edit]

  • The first DEF CON hacking conference takes place in Las Vegas. The conference is meant to be a one-time party to say good-bye to BBSs (now replaced by the Web), but the gathering was so popular it became an annual event.
  • AOL gives its users access to Usenet, precipitating Eternal September.

1994[edit]

  • Summer: Russian crackers siphon $10 million from Citibank and transfer the money to bank accounts around the world. Vladimir Levin, the 30-year-old ringleader, used his work laptop after hours to transfer the funds to accounts in Finland and Israel. Levin stands trial in the United States and is sentenced to three years in prison. Authorities recover all but $400,000 of the stolen money.
  • Hackers adapt to emergence of the World Wide Web quickly, moving all their how-to information and hacking programs from the old BBSs to new hacker web sites.
  • AOHell is released, a freeware application that allows a burgeoning community of unskilled script kiddies to wreak havoc on America Online. For days, hundreds of thousands of AOL users find their mailboxes flooded with multi-megabyte email bombs and their chat rooms disrupted with spam messages.
  • December 27: After experiencing an IP spoofing attack by Kevin Mitnick, computer security expert Tsutomu Shimomura started to receive prank calls that popularized the phrase "My kung fu is stronger than yours".[36]

1995[edit]

  • The movies The Net and Hackers are released.
  • The Canadian ISP dlcwest.com is hacked and website replaced with a graphic and the caption "You've been hacked MOFO"
  • February 22: The FBI raids the "Phone Masters".[37]

1996[edit]

  • Hackers alter Web sites of the United States Department of Justice (August), the CIA (October), and the U.S. Air Force (December).
  • Canadian hacker group, Brotherhood, breaks into the Canadian Broadcasting Corporation.
  • Arizona hacker, John Sabo A.K.A FizzleB/Peanut, was arrested for hacking Canadian ISP dlcwest.com claiming the company was defrauding customers through over billing.orts that hackers attempted to break into Defense Department computer files some 250,000 times in 1995 alone. About 65 percent of the attempts were successful, according to the report.
  • Cryptovirology is born with the invention of the cryptoviral extortion protocol that would later form the basis of modern ransomware.[38]

1997[edit]

1998[edit]

1999[edit]

2000s[edit]

2000[edit]

  • May: The ILOVEYOU worm, also known as VBS/Loveletter and Love Bug worm, is a computer worm written in VBScript. It infected millions of computers worldwide within a few hours of its release. It is considered to be one of the most damaging worms ever. It originated in the Philippines; made by an AMA Computer College student Onel de Guzman for his thesis.
  • September: Computer hacker Jonathan James became the first juvenile to serve jail time for hacking.

2001[edit]

  • Microsoft becomes the prominent victim of a new type of hack that attacks the domain name server. In these denial-of-service attacks, the DNS paths that take users to Microsoft's websites are corrupted.
  • February: A Dutch cracker releases the Anna Kournikova virus, initiating a wave of viruses that tempts users to open the infected attachment by promising a sexy picture of the Russian tennis star.
  • April: FBI agents trick two Russian crackers into coming to the U.S. and revealing how they were hacking U.S. banks.[45]
  • July: Russian programmer Dmitry Sklyarov is arrested at the annual DEF CON hacker convention. He was the first person criminally charged with violating the Digital Millennium Copyright Act (DMCA).
  • August: Code Red worm, infects tens of thousands of machines.
  • The National Cyber Security Alliance (NCSA) is established in response to the September 11 attacks on the World Trade Center.[46]

2002[edit]

  • January: Bill Gates decrees that Microsoft will secure its products and services, and kicks off a massive internal training and quality control campaign.
  • March: Gary McKinnon is arrested following unauthorized access to US military and NASA computers.
  • May: Klez.H, a variant of the worm discovered in November 2001, becomes the biggest malware outbreak in terms of machines infected, but causes little monetary damage.
  • June: The Bush administration files a bill to create the Department of Homeland Security, which, among other things, will be responsible for protecting the nation's critical IT infrastructure.
  • August: Researcher Chris Paget publishes a paper describing "shatter attacks", detailing how Windows' unauthenticated messaging system can be used to take over a machine. The paper raises questions about how securable Windows could ever be. It is however largely derided as irrelevant as the vulnerabilities it described are caused by vulnerable applications (placing windows on the desktop with inappropriate privileges) rather than an inherent flaw within the Operating System.
  • October: The International Information Systems Security Certification Consortium—(ISC)²—confers its 10,000th CISSP certification.

2003[edit]

2004[edit]

  • March: New Zealand's Government (National Party) website defaced by hacktivist group BlackMask[47]
  • July: North Korea claims to have trained 500 hackers who successfully crack South Korean, Japanese, and their allies' computer systems.[48]
  • October: National Cyber Security Awareness Month was launched by the National Cyber Security Alliance and U.S. Department of Homeland Security.

2005[edit]

2006[edit]

  • January: One of the few worms to take after the old form of malware, destruction of data rather than the accumulation of zombie networks to launch attacks from, is discovered. It had various names, including Kama Sutra (used by most media reports), Black Worm, Mywife, Blackmal, Nyxem version D, Kapser, KillAV, Grew and CME-24. The worm would spread through e-mail client address books, and would search for documents and fill them with garbage, instead of deleting them to confuse the user. It would also hit a web page counter when it took control, allowing the programmer who created it as well as the world to track the progress of the worm. It would replace documents with random garbage on the third of every month. It was hyped by the media but actually affected relatively few computers, and was not a real threat for most users.
  • May: Jeanson James Ancheta receives a 57-month prison sentence,[52] and is ordered to pay damages amounting to $15,000 to the Naval Air Warfare Center in China Lake and the Defense Information Systems Agency, for damage done due to DDoS attacks and hacking. Ancheta also had to forfeit his gains to the government, which include $60,000 in cash, a BMW, and computer equipment.[52]
  • May: The largest defacement in Web History as of that time is performed by the Turkish hacker iSKORPiTX who successfully hacked 21,549 websites in one shot.[citation needed]
  • July: Robert Moore and Edwin Pena were the first people to be charged by U.S. authorities for VoIP hacking. Robert Moore served 2 years in federal prison and was given $152,000 restitution. Once Edwin Pena was caught after fleeing the country, evading authorities for almost 2 years, he was sentenced to 10 years and given $1 million restitution.[53]
  • September: Viodentia releases FairUse4WM tool which would remove DRM information off Windows Media Audio (WMA) files downloaded from music services such as Yahoo! Unlimited, Napster, Rhapsody Music and Urge.

2007[edit]

  • August 11: United Nations website hacked by Turkish Hacker Kerem125.[58]
  • November 14: Panda Burning Incense which is known by several other names, including Fujacks and Radoppan.T lead to the arrest of eight people in China. Panda Burning Incense was a parasitic virus that infected executable files on a PC. When infected, the icon of the executable file changes to an image of a panda holding three sticks of incense. The arrests were the first for virus writing in China.[59]

2008[edit]

  • January 17: Project Chanology; Anonymous attacks Scientology website servers around the world. Private documents are stolen from Scientology computers and distributed over the Internet.
  • March 7: Around 20 Chinese hackers claim to have gained access to the world's most sensitive sites, including the Pentagon. They operated from an apartment on a Chinese Island.[60]
  • March 14: Trend Micro website successfully hacked by Turkish hacker Janizary (aka Utku).[61]

2009[edit]

  • April 4: Conficker worm infiltrated millions of PCs worldwide including many government-level top-security computer networks.[62]

2010s[edit]

2010[edit]

  • January 12: Operation Aurora Google publicly reveals[63] that it has been on the receiving end of a "highly sophisticated and targeted attack on our corporate infrastructure originating from China that resulted in the theft of intellectual property from Google"
  • June: Stuxnet The Stuxnet worm is found by VirusBlokAda. Stuxnet was unusual in that while it spread via Windows computers, its payload targeted just one specific model and type of SCADA systems. It slowly became clear that it was a cyber attack on Iran's nuclear facilities—with most experts believing that Israel[64] was behind it—perhaps with US help.
  • December 3: The first Malware Conference, MALCON took place in India. Founded by Rajshekhar Murthy, malware coders are invited to showcase their skills at this annual event supported by the Government of India. An advanced malware for Symbian OS is released by hacker A0drul3z.

2011[edit]

  • The hacker group Lulz Security is formed.
  • April 9: Bank of America website got hacked by a Turkish hacker named JeOPaRDY. An estimated 85,000 credit card numbers and accounts were reported to have been stolen due to the hack. Bank officials say no personal customer bank information is available on that web-page. Investigations are being conducted by the FBI to trace down the incriminated hacker.[65]
  • April 17: An "external intrusion" sends the PlayStation Network offline, and compromises personally identifying information (possibly including credit card details) of its 77 million accounts, in what is claimed to be one of the five largest data breaches ever.[66]
  • Computer hacker sl1nk releases information of his penetration in the servers of the Department of Defense (DoD), Pentagon, NASA, NSA, US Military, Department of the Navy, Space and Naval Warfare System Command and other UK/US government websites.[67]
  • September: Bangladeshi hacker TiGER-M@TE made a world record in defacement history by hacking 700,000 websites in a single shot.[68]
  • October 16: The YouTube channel of Sesame Street was hacked, streaming pornographic content for about 22 minutes.[69]
  • November 1: The main phone and Internet networks of the Palestinian territories sustained a hacker attack from multiple locations worldwide.[70]
  • November 7: The forums for Valve's Steam service were hacked. Redirects for a hacking website, Fkn0wned, appeared on the Steam users' forums, offering "hacking tutorials and tools, porn, free giveaways and much more."[71]
  • December 14: Five members of the Norwegian hacker group, Noria, were arrested, allegedly suspected for hacking into the email account of the militant extremist Anders Behring Breivik (who perpetrated the 2011 attacks in the country).[72]

2012[edit]

  • A Saudi hacker, 0XOMAR, published over 400,000 credit cards online,[73] and threatened Israel to release 1 million credit cards in the future. In response to that incident, an Israeli hacker published over 200 Saudis' credit cards online.[74][75]
  • January 7: "Team Appunity", a group of Norwegian hackers, were arrested for breaking into Norway's largest prostitution website then publishing the user database online.[76]
  • February 3: Marriott was hacked by a New Age ideologist, Attila Nemeth who was resisting against the New World Order where he said that corporations are allegedly controlling the world. As a response Marriott reported him to the United States Secret Service.[77]
  • February 8: Foxconn is hacked by a hacker group, "Swagg Security", releasing a massive amount of data including email and server logins, and even more alarming—bank account credentials of large companies like Apple and Microsoft. Swagg Security stages the attack just as a Foxconn protest ignites against terrible working conditions in southern China.[78]
  • May 4: The websites of several Turkish representative offices of international IT-companies are defaced within the same day by F0RTYS3V3N (Turkish Hacker), including the websites of Google, Yandex, Microsoft, Gmail, MSN, Hotmail, PayPal.[79][80][81][82]
  • May 24: WHMCS is hacked by UGNazi, they claim that the reason for this is because of the illegal sites that are using their software.
  • May 31: MyBB is hacked by newly founded hacker group, UGNazi, the website was defaced for about a day, they claim their reasoning for this was because they were upset that the forum board Hackforums.net uses their software.
  • June 5: The social networking website LinkedIn has been hacked and the passwords for nearly 6.5 million user accounts are stolen by cybercriminals. As a result, a United States grand jury indicted Nikulin and three unnamed co-conspirators on charges of aggravated identity theft and computer intrusion.
  • August 15: The most valuable company in the world Saudi Aramco is crippled by a cyber warfare attack for months by malware called Shamoon. Considered the biggest hack in history in terms of cost and destructiveness . Carried out by an Iranian attacker group called Cutting Sword of Justice.[83] Iranian hackers retaliated against Stuxnet by releasing Shamoon. The malware destroyed over 35,000 Saudi Aramco computers, affecting business operations for months.
  • December 17: Computer hacker sl1nk announced that he has hacked a total of 9 countries' SCADA systems. The proof includes 6 countries: France, Norway, Russia, Spain, Sweden and the United States.[84]

2013[edit]

  • The social networking website Tumblr is attacked by hackers. Consequently, 65,469,298 unique emails and passwords were leaked from Tumblr. The data breach's legitimacy is confirmed by computer security researcher Troy Hunt.[85]

2014[edit]

  • February 7: The bitcoin exchange Mt. Gox filed for bankruptcy after $460 million was apparently stolen by hackers due to "weaknesses in [their] system" and another $27.4 million went missing from its bank accounts.[86]
  • October: The White House computer system was hacked.[87] It was said that the FBI, the Secret Service, and other U.S. intelligence agencies categorized the attacks "among the most sophisticated attacks ever launched against U.S. government systems."[88]
  • November 24: In response to the release of the film The Interview, the servers of Sony Pictures are hacked by a hacker group calling itself "Guardian of Peace".
  • November 28: The website of the Philippine telecommunications company Globe Telecom was hacked in response to the poor internet service they are distributing.[89]

2015[edit]

2016[edit]

2017[edit]

2018[edit]

  • March: Computer systems in the city of Atlanta, in the U.S. state of Georgia, are seized by hackers with ransomware. They did not pay the ransom,[108] and two Iranians were indicted by the FBI on cyber crime charges for the breach.[109]
  • The town of Wasaga Beach in Ontario, Canada computer systems are seized by hackers with ransomware.[110]
  • October: West Haven, Connecticut USA computer systems are seized by hackers with ransomware, they paid $2,000 in ransom.[111]
  • November:

2019[edit]

  • March: Jackson County computer systems in the U.S. state of Georgia are seized by hackers with ransomware, they paid $400,000 in ransom.[113] The city of Albany in the U.S. state of New York experiences a ransomware cyber attack.[114][115]
  • April: Computer systems in the city of Augusta, in the U.S. state of Maine, are seized by hackers using ransomware.[116][117] The City of Greenville (North Carolina)'s computer systems are seized by hackers using ransomware known as RobbinHood.[118][119] Imperial County, in the U.S. state of California, computer systems are seized by hackers using Ryuk ransomware.[120]
  • May: computer systems belonging to the City of Baltimore are seized by hackers using ransomware known as RobbinHood that encrypts files with a "file-locking" virus, as well as the tool EternalBlue.[121][122][123][124]
  • June: The city of Riviera Beach, Florida paid roughly $600,000 ransom in Bitcoin to hackers who seized their computers using ransomware.[125] Hackers stole 18 hours of unreleased music from the band Radiohead demanding $150,000 ransom. Radiohead released the music to the public anyway and did not pay the ransom.[126]
  • November: The Anonymous hacktivist collective announced that they have hacked into four Chinese computer databases and donated those to data breach indexing/notification service vigilante.pw. The hack was conducted in order to support the 2019 Hong Kong protests, amidst the Hong Kong police's siege of the city's Polytechnic University. They also brought up a possible peace plan first proposed by a professor at Inha University in hopes of having the Korean reunification and the five key demands of the Hong Kong protest being fulfilled at once.[127]

2020s[edit]

2020[edit]

  • May: Anonymous declared a large hacking sequence on May 28, three days after the murder of George Floyd. An individual claiming to be Anonymous stated that "We are Legion. We do not forgive. We do not forget. Expect us." in a now-deleted video. Anonymous addressed police brutality and vowed that they "will be exposing your many crimes to the world". It is suspected that Anonymous are the cause for the downtime and public suspension of the Minneapolis Police Department website and its parent site, the website of the City of Minneapolis.[129]
  • May: Indian national Shubham Upadhyay posed as Superintendent of Police and by virtue of social engineering, used a free caller identification app to call up the in-charge of the Kotwali police station, K. K. Gupta, in order to threaten him to get his phone repaired amidst the COVID-19 lockdown. The attempt was foiled.[130]
  • June: Anonymous claimed responsibility for stealing and leaking a trove of documents collectively nicknamed 'BlueLeaks'. The 269-gigabyte collection was then published by a leak-focused activist group known as Distributed Denial of Secrets. Furthermore the collective took down Atlanta Police Department's website via DDoS and defaced sites such as a Filipino governmental webpage and that of Brookhaven National Labs. They expressed support for Julian Assange and press freedom while briefly took a swing against Facebook, Reddit and Wikipedia for having 'engaged in shady practices behind our prying eyes'. In the case of Reddit they posted a link to a court document describing the possible involvement of a moderator of a large traffic subreddit /r/news in an online harassment related case.[131][132]
  • June: The Buffalo NY website was supposedly hacked by Anonymous.[133] While the website was up and running after a few minutes, Anonymous tweeted again on Twitter urging that it be taken down.[134] A few minutes later, the Buffalo NY website was taken down again. They also hacked Chicago police radios to play N.W.A's "Fuck tha Police".[135]
  • June: Over one thousand accounts on multiplayer online game Roblox has been hacked to support U.S. President Donald Trump.[136]
  • July: The user credentials of writing website Wattpad was stolen and leaked on a hacker forum. The leaked database contained over 200 million records.[137]
  • August: Large number of subreddits on Reddit has been hacked to post materials endorsing Donald Trump. The affected subreddits included r/BlackPeopleTwitter, r/3amJokes, r/NFL, r/PhotoshopBattles. An entity with the name of "calvin goh and Melvern" had purportedly claimed responsibility for the massive defacement who also made violent threats against a Chinese embassy.[138]
  • August: The US Air Force's Hack-A-Sat event was hosted at DEF CON's virtual conference where groups such as Poland Can Into Space, FluxRepeatRocket, AddVulcan, Samurai, Solar Wine, PFS, 15 Fitty Tree, and 1064CBread competed in order to control a satellite in space. The Poland Can Into Space team stood out for having successfully manipulated a satellite to take a picture of the Moon.[139][140]
  • August: The website of Belarusian company "BrestTorgTeknika" has been defaced by a hacker nicknaming herself "Queen Elsa" in order to support the 2020 Belarusian protests. In it the page hacker exclaimed "Get Iced Iced already" and "Free Belarus, revolution of our times" with the latter alluding to the famous slogan used by 2019 Hong Kong protests. The results of the hack was then announced on Reddit's /r/belarus subreddit by her under the username of Socookre.[141][142]
  • August: Multiple DDoS attacks forced New Zealand's stock market to temporarily shut down.[143]

See also[edit]

References[edit]

  1. ^ Marks, Paul (December 27, 2011). "Dot-dash-diss: The gentleman hacker's 1903 lulz". New Scientist. Retrieved January 11, 2012.
  2. ^ Davis, Amanda. "A History of Hacking - IEEE - The Institute". Theinstitute.ieee.org. Archived from the original on August 25, 2016. Retrieved July 1, 2017.
  3. ^ "When did the term 'computer virus' arise?". Scientific American. Retrieved July 27, 2018.
  4. ^ Yagoda, Ben (March 6, 2014). "A Short History of "Hack"". Retrieved July 22, 2017.
  5. ^ "Hacking and Blue Boxes | The Story of Information". Infostory.com. November 20, 2011. Retrieved July 1, 2017.
  6. ^ Duarte, Gustavo (August 27, 2008). "First Recorded Usage of "Hacker" - Gustavo Duarte". Duartes.org. Retrieved July 1, 2017.
  7. ^ "Archived copy" (PDF). Archived from the original (PDF) on March 14, 2016. Retrieved January 4, 2017.CS1 maint: archived copy as title (link)
  8. ^ "untitled1.html". Larch-www.lcs.mit.edu:8001. November 7, 1940. Retrieved July 1, 2017.
  9. ^ "Archived copy". Archived from the original on April 15, 2013. Retrieved October 8, 2010.CS1 maint: archived copy as title (link)
  10. ^ "23257 : IBM 7094 CTSS System Text Editor Multiple Instance Password File Disclosure". Archive.fo. Archived from the original on April 15, 2013. Retrieved July 1, 2017.
  11. ^ "The World's First Computer Password? It Was Useless Too". WIRED. June 19, 2011. Retrieved July 1, 2017.
  12. ^ Falkoff, A. D. (December 1, 1991). "The Family of APL Systems". IBM Systems Journal. 30 (4): 416–432. doi:10.1147/sj.304.0416. S2CID 19030940.
  13. ^ David Price: Blind Whistling Phreaks and the FBI's Historical Reliance on Phone Tap Criminality CounterPunch, June 30, 2008 Archived July 1, 2008, at the Wayback Machine
  14. ^ Rosenbaum, Ron (October 7, 2011). "The article that inspired Steve Jobs: "Secrets of the Little Blue Box"". Slate.com. Retrieved July 1, 2017.
  15. ^ "The Memory Hole > The Missing Chapter from The Art of Deception by Kevin Mitnick". Archived from the original on March 17, 2009. Retrieved July 1, 2017.CS1 maint: BOT: original-url status unknown (link)
  16. ^ McLellan, Vin (July 26, 1981). "Case of the Purloined Password". The New York Times. Retrieved August 11, 2015.
  17. ^ Cite error: The named reference mclellan3340726 was invoked but never defined (see the help page).
  18. ^ "The Greatest Hacks of All Time". WIRED. February 6, 2001.
  19. ^ Elmer-DeWitt, Philip (August 29, 1983). "The 414 Gang Strikes Again". Time. p. 75.
  20. ^ "Beware: Hackers at play". Newsweek. September 5, 1983. pp. 42–46, 48.
  21. ^ Van Creveld, M. (2013). Wargames: from gladiators to gigabytes. Cambridge University Press.
  22. ^ "Timeline: The U.S. Government and Cybersecurity". Washington Post. 2002. Retrieved April 14, 2006.
  23. ^ Thompson, Ken (October 1983). "Reflections on Trusting Trust" (PDF). 1983 Turing Award Lecture. ACM.
  24. ^ "2600: The Hacker Quarterly (Volume 2, Number 8, August 1985) | United States Postal Service | Telephone Tapping". Scribd.com. Retrieved July 1, 2017.
  25. ^ "New Jersey Statute Directory - NJSA 2C:20-25 Computer criminal activity; degree of crime; sentencing". Nj-statute-info.com. Retrieved July 1, 2017.
  26. ^ "TUCoPS :: Cyber Law :: psbust.txt". Artofhacking.com. Retrieved July 1, 2017.
  27. ^ "Archived copy". Archived from the original on April 26, 2012. Retrieved October 26, 2011.CS1 maint: archived copy as title (link)
  28. ^ 'Hacking' into Prestel is not a Forgery Act offence" (Law Report), The Times, July 21, 1987.
  29. ^ Stoll, Cliff (1989). The cuckoo's egg. New York: Doubleday. ISBN 0-370-31433-6.
  30. ^ Burger, R.: "Computer viruses - a high tech disease", Abacus/Data Becker GmbH (1988), ISBN 1-55755-043-3
  31. ^ Spafford, E.H.: "The Internet Worm Program: An Analysis", Purdue Technical Report CSD-TR-823 (undated)
  32. ^ Eichin, M.W. and Rochlis, J.A.: "With Microscope and Tweezers: An Analysis of the Internet Virus of November 1988", MIT(1989)
  33. ^ "Computer Intruder is Put on Probation and Fined" by John Markoff, The New York Times. The total fine ran to $13,326, which included a $10,000 fine, $50 special assessment, and $3,276 cost of probation oversight.
  34. ^ Bill Apro & Graeme Hammond (2005). Hackers: The Hunt for Australia's Most Infamous Computer Cracker. Five Mile Press. ISBN 1-74124-722-5.
  35. ^ Esquibel, Bruce (October 8, 1994). ""Operation Sundevil" is finally over for Dr. Ripco". Electronic Frontier Foundation. Archived from the original on August 10, 2011. Retrieved March 8, 2009.
  36. ^ Poulsen, Kevin (January 21, 2000). "The case of the kung fu 'phreak'". ZDNet. Retrieved May 12, 2015.
  37. ^ "Recent Large Name Phreaker Busts by Anonymous". EmpireTimes. March 11, 1995.
  38. ^ A. Young, M. Yung. "Cryptovirology: Extortion-Based Security Threats and Countermeasures". IEEE Symposium on Security & Privacy, May 6–8, 1996. pp. 129–141. IEEEExplore: Cryptovirology: extortion-based security threats and countermeasures
  39. ^ Trust in Cyberspace, Committee on Information Systems Trustworthiness, National Research Council, 1999
  40. ^ Hackers jam Microsoft's site, 1997
  41. ^ Associated Press (December 10, 1997). "Hackers Leave Ransom Note on Yahoo Site". Retrieved May 19, 2017.
  42. ^ "Pentagon Deflects Web Assault | WIRED". Wired. September 10, 1998. Retrieved July 1, 2017.
  43. ^ "CNN - Embassy site hackers aimed to show its vulnerability - September 8, 1999". February 6, 2003. Archived from the original on 2003-02-06.
  44. ^ "U.S. Department of Justice, For Immediate Release, Dallas, Texas". USDOJ. September 16, 1999. Archived from the original on May 31, 2009.
  45. ^ "FBI sting snares top Russian crackers".
  46. ^ "Get Online Safety Resources from the National Cyber Security Alliance".
  47. ^ "Police called after National Party website hacked". NZ Herald. March 15, 2004.
  48. ^ "North Korean hackers sabotage computer networks of South Korea". Pravda Online. Archived from the original on August 6, 2007. Retrieved October 14, 2008.
  49. ^ Rob Lemos. "Campaign seeks to defang Rafa's hacker image", "Security Focus", April 11, 2005.
  50. ^ Krebs, Brian. "Teen Pleads Guilty to Hacking Paris Hilton's Phone", The Washington Post, September 13, 2005.
  51. ^ Iain Thomson (November 4, 2005). "FBI sting nets botnet hacker". vnunet.com. Archived from the original on December 20, 2007. Retrieved September 26, 2008.
  52. ^ a b "Archived copy". Archived from the original on September 27, 2007. Retrieved May 3, 2007.CS1 maint: archived copy as title (link)
  53. ^ McMillan, Robert (September 24, 2010). "Man gets 10 years for VoIP hacking". Computerworld. Retrieved May 27, 2019.
  54. ^ Kirk, Jeremy (May 17, 2007). "Estonia recovers from massive denial-of-service attack". Network World. Archived from the original on December 3, 2013. Retrieved March 14, 2015.
  55. ^ Cooney, Michael (June 13, 2007). "FBI: Operation Bot Roast finds over 1 million botnet victims". Network World. Retrieved March 14, 2015.
  56. ^ McMillan, Robert (June 21, 2007). "Pentagon shuts down systems after cyberattack". InfoWorld. IDG. Archived from the original on July 6, 2008. Retrieved March 10, 2008.
  57. ^ Aitoro, Jill R. (March 5, 2008). "Defense officials still concerned about data lost in 2007 network attack". Government Executive. National Journal Group. Retrieved March 10, 2008.
  58. ^ "BMnin sitesi hacklendi haberi". Internethaber. Archived from the original on September 30, 2011. Retrieved March 14, 2015.
  59. ^ Gradijan, Dave (February 13, 2007). "Eight Arrested for Creating Panda Burning Incense Virus". CSO Online. Retrieved July 20, 2019.
  60. ^ "Chinese hackers: No site is safe". CNN. March 7, 2008. Retrieved March 7, 2008.
  61. ^ Hoffman, Stefanie (March 14, 2008). "Trend Micro Victim Of Malicious Hack". CRN. Retrieved March 14, 2015.
  62. ^ Markoff, John (August 26, 2009). "Defying Experts, Rogue Computer Code Still Lurks". New York Times. Retrieved August 27, 2009.
  63. ^ "A new approach to China". Google Inc. January 12, 2010. Retrieved January 17, 2010.
  64. ^ Broad, William J.; Sanger, David E. (November 18, 2010). "Worm in Iran Can Wreck Nuclear Centrifuges". The New York Times.
  65. ^ Kumar, Mohit (March 26, 2011). "Thousands of Bank of America Accounts Hacked !". The Hacker News - Biggest Information Security Channel. Retrieved March 14, 2015.
  66. ^ "PlayStation data breach deemed in 'top 5 ever' - Business - CBC News". Cbc.ca. April 27, 2011. Retrieved April 29, 2011.
  67. ^ Is Department of Defense (DoD), Pentagon, NASA, NSA secure?, TheHackerNews, May 14, 2011.
  68. ^ Kovacs, Eduard (September 26, 2011). "700,000 InMotion Websites Hacked by TiGER-M@TE". softpedia. Retrieved March 14, 2015.
  69. ^ John P. Mello Jr. "Sesame Street Hacked, Porn Posted". PC World. Retrieved October 26, 2011.
  70. ^ Ashkar, Alaa. "PA Telecommunications minister: Palestinian Internet Under Hacking Attacks". IMEMC. Retrieved November 2, 2011.
  71. ^ Ashcraft, Brian. "Steam Forums Apparently Hacked". Kotaku.
  72. ^ Jonas Sverrisson Rasch. "News article about the arrests of Noria". Dagbladet. Retrieved December 14, 2012.
  73. ^ Flock, Elizabeth (January 3, 2012). "Saudi hackers say they published Israeli credit card information". The Washington Post.
  74. ^ Saudi Hacker Threatens to Release 1 Million Israeli Credit Card Numbers, Curt Hopkins, January 6, 2012
  75. ^ "Israeli hacker retaliates to credit card hacking". BBC News. January 12, 2012.
  76. ^ Kripos. "(Norwegian) Tre personer siktet for datainnbrudd". Kripos. Archived from the original on July 28, 2013. Retrieved April 25, 2012.
  77. ^ "Marriott,Hack,Extortion, Arrest and important websites hacked". February 3, 2012.
  78. ^ Garside, Juliette (February 9, 2012). "Apple supplier Foxconn hacked in factory conditions protest". The Guardian. London.
  79. ^ "Com.tr'ler nasıl hacklendi?". CNNTurk. May 4, 2012.
  80. ^ "Türk hacker'lar com.tr uzantılı sitelere saldırdı". Hurriyet. May 4, 2012.
  81. ^ "Nic.tr Sistemlerine Sızılınca, '.tr' Uzantılı Siteler Başka Yerlere Yönlendirildi". Turk-Internet. May 4, 2012.
  82. ^ "Google,Microsoft,Yandex,Paypal and important websites hacked Zone-H Mirror". May 4, 2012.
  83. ^ "Jose Pagliery: The inside story of the biggest hack in history". August 5, 2015. Retrieved August 19, 2012.
  84. ^ "Archived copy". Archived from the original on March 4, 2016. Retrieved June 15, 2015.CS1 maint: archived copy as title (link)
  85. ^ "Hackers Stole 65 Million Passwords From Tumblr, New Analysis Reveals - Motherboard". Motherboard.vice.com. May 30, 2016. Retrieved July 1, 2017.
  86. ^ "The Inside Story of Mt. Gox, Bitcoin's $460 Million Disaster - WIRED". WIRED. March 3, 2014. Retrieved March 14, 2015.
  87. ^ "White House computer network 'hacked' - BBC". BBC. October 29, 2014. Retrieved November 6, 2015.
  88. ^ Evan Perez; Shimon Prokupecz (April 8, 2015). "How the U.S. thinks Russians hacked the White House". CNN. Retrieved December 17, 2016. Russian hackers behind the damaging cyber intrusion of the State Department in recent months used that perch to penetrate sensitive parts of the White House computer system, according to U.S. officials briefed on the investigation.
  89. ^ Michael Angelo Santos. "Globe Website was Hacked by Blood Sec Hackers". Coorms.
  90. ^ Zengerle, Patricia; Cassella, Megan (July 9, 2015). "Estimate of Americans hit by government personnel data hack skyrockets". Reuters. Retrieved July 9, 2015.
  91. ^ Barrett, Devlin (June 5, 2015). "U.S. Suspects Hackers in China Breached About four (4) Million People's Records, Officials Say". Wall Street Journal. Retrieved June 5, 2015.
  92. ^ Sanders, Sam (June 4, 2015). "Massive Data Breach Puts 4 Million Federal Employees' Records At Risk". NPR. Retrieved June 5, 2015.
  93. ^ "ISIL-Linked Kosovo Hacker Sentenced to 20 Years in Prison". Justice Department of the United States. September 23, 2016.
  94. ^ Romm, Tony; Geller, Eric. "WikiLeaks supporters claim credit for massive U.S. cyberattack, but researchers skeptical". POLITICO. Retrieved October 22, 2016.
  95. ^ Larson, Selena (November 22, 2017). "Uber's massive hack: What we know". CNNMoney. Retrieved June 20, 2019.
  96. ^ Mussa, Matthew (April 30, 2017). "'The Dark Overlord', Netflix Hacker: 5 Fast Facts You Need to Know". Heavy.com. Retrieved July 1, 2017.
  97. ^ Brenner, Bill (May 16, 2017). "WannaCry: the ransomware worm that didn't arrive on a phishing hook". Naked Security. Retrieved May 18, 2017.
  98. ^ "Cyber-attack: Europol says it was unprecedented in scale". BBC News. May 13, 2017. Retrieved May 18, 2017.
  99. ^ "Hackers seize unreleased Disney film, demand 'huge' Bitcoin ransom – report". RT International. Retrieved June 20, 2019.
  100. ^ a b c Hern, Alex. "Hackers publish private photos from cosmetic surgery clinic | Technology". The Guardian. Retrieved May 31, 2017.
  101. ^ "Plastic surgery clinics hacked; 25,000 photos, data online". The Seattle Times. Retrieved May 31, 2017.
  102. ^ "Plastic surgery clinics hacked; 25,000 photos, data online". Abcnews.go.com. Archived from the original on May 31, 2017. Retrieved May 31, 2017.
  103. ^ "Global ransomware attack causes chaos". BBC News. June 27, 2017. Retrieved June 27, 2017.
  104. ^ Constantin, Lucian (April 10, 2019). "Group behind TRITON industrial sabotage malware made more victims". CSO Online. Retrieved July 17, 2019.
  105. ^ Haselton, Todd (September 7, 2017). "Credit reporting firm Equifax says data breach could potentially affect 143 million US consumers". cnbc.com. Retrieved October 16, 2017.
  106. ^ Hopkins, Nick (September 25, 2017). "Deloitte hit by cyber-attack revealing clients' secret emails". Theguardian.com. Retrieved October 16, 2017.
  107. ^ Stack, Liam (December 6, 2017). "North Carolina County Refuses to Pay $23,000 Ransom to Hackers". The New York Times. ISSN 0362-4331. Retrieved June 20, 2019.
  108. ^ McWhirter, Joseph De Avila and Cameron. "Atlanta Hit With Cyberattack". WSJ. Retrieved June 20, 2019.
  109. ^ "Two Iranians Indicted in Atlanta on Cyber Crime Charges". WSJ. Associated Press. Retrieved June 20, 2019.
  110. ^ Adams, Ian (May 1, 2018). "Wasaga Beach town hall computers seized by hackers". Simcoe.com. Retrieved June 20, 2019.
  111. ^ Rondinone, Nicholas. "Hackers Target Connecticut City, Force Officials To Pay $2,000 Ransom". courant.com. Retrieved June 20, 2019.
  112. ^ "Feds indict ransomware hackers of Allscripts, others". Modern Healthcare. November 29, 2018. Retrieved June 20, 2019.
  113. ^ Cimpanu, Catalin. "Georgia county pays a whopping $400,000 to get rid of a ransomware infection". ZDNet. Retrieved June 20, 2019.
  114. ^ "City of Albany experiences cyber attack". WRGB. March 30, 2019. Retrieved June 20, 2019.
  115. ^ Moench, Mallory (March 31, 2019). "Albany cyber attack affecting records, police". Times Union. Retrieved June 20, 2019.
  116. ^ "Augusta city offices hit by computer virus". WCSH. Retrieved June 20, 2019.
  117. ^ "Hacker wanted more than $100K to restore Maine city's computers". Bangor Daily News. Retrieved June 20, 2019.
  118. ^ "FBI now investigating "RobinHood" ransomware attack on Greenville computers". www.witn.com. Retrieved June 20, 2019.
  119. ^ "A Closer Look at the RobbinHood Ransomware". BleepingComputer.
  120. ^ Shalby, Colleen (April 18, 2019). "Ryuk malware hacked a county government website. It's been down for 6 days". latimes.com. Retrieved June 20, 2019.
  121. ^ Chokshi, Niraj (May 22, 2019). "Hackers Are Holding Baltimore Hostage: How They Struck and What's Next". The New York Times. ISSN 0362-4331. Retrieved June 20, 2019.
  122. ^ Campbell, Ian Duncan, Colin. "Baltimore city government computer network hit by ransomware attack". baltimoresun.com. Retrieved June 20, 2019.
  123. ^ Zhang, Ian Duncan, Christine. "Analysis of ransomware used in Baltimore attack indicates hackers needed 'unfettered access' to city computers". baltimoresun.com. Retrieved June 20, 2019.
  124. ^ Kamp, Scott Calvert and Jon. "Hackers Won't Let Up in Their Attack on U.S. Cities". WSJ. Retrieved June 20, 2019.
  125. ^ Karimi, Faith. "Florida city to pay $600K ransom to hacker who seized computer systems weeks ago". CNN. Retrieved June 20, 2019.
  126. ^ "Radiohead releases 'OK Computer' sessions that hacker tried to ransom". Naked Security. June 12, 2019. Retrieved June 20, 2019.
  127. ^ "Anonymous Hacks China As Chinese Military Moves On Hong Kong, Students Trapped at Polytechnic University". Activist Post. November 19, 2019. Retrieved August 25, 2020.
  128. ^ Everington, Keoni. "Anonymous creates pro-Taiwan page inside UN website". www.taiwannews.com.tw. Taiwan News. Retrieved February 5, 2020.
  129. ^ "Variety".
  130. ^ Jaiswal, Priya (May 6, 2020). "UP: 23-year-old man poses as police official to get mobile phone repaired, lands in lockup". www.indiatvnews.com. Retrieved August 14, 2020.
  131. ^ "Anonymous Stole and Leaked a Megatrove of Police Documents". Wired. Retrieved June 26, 2020.
  132. ^ "An Interview With Anonymous - George Floyd Protests, Hacks, And Press Freedom". Activist Post. June 23, 2020. Retrieved June 26, 2020.
  133. ^ "Anonymous Strike Back At Buffalo PD After Shoving Incident". HotNewHipHop. Retrieved June 6, 2020.
  134. ^ "@GroupAnon: "#TangoDown again. Those lasers are firing hot."". Twitter. Retrieved June 6, 2020.
  135. ^ "Anonymous hack Chicago police radios to play NWA's 'Fuck Tha Police'". NME Music News, Reviews, Videos, Galleries, Tickets and Blogs | NME.COM. June 1, 2020. Retrieved June 26, 2020.
  136. ^ "Roblox accounts hacked to support Donald Trump". BBC News. June 30, 2020. Retrieved August 13, 2020.
  137. ^ "Wattpad data breach exposes account info for millions of users". BleepingComputer. Retrieved August 14, 2020.
  138. ^ "Everything We Know About the Reddit Hack, Including Who Is Claiming Responsibility". Newsweek. Retrieved August 11, 2020.
  139. ^ "Einmal zum Mond und wieder zurück – Hacker der Hochschule Bonn-Rhein erfolgreich beim Hack-A-Sat". idw-online.de (in German). Retrieved August 16, 2020.
  140. ^ "The Race to Hack a Satellite at DEF CON". Dark Reading. Retrieved August 16, 2020.
  141. ^ "Гостевая книга (Actual archive of defaced page)". August 18, 2020. Archived from the original on 2020-08-18. Retrieved August 25, 2020.
  142. ^ Socookre. "Queen Elsa hacks Belarus website and teases Lukashenko (SIC)". Archived from the original on 2020-08-25. Retrieved August 25, 2020.
  143. ^ Farrer, Martin (26 August 2020). "New Zealand stock exchange hit by cyber attack for second day". The Guardian. Retrieved 11 September 2020.
  144. ^ Eddy, Melissa; Perlroth, Nicole (18 September 2020). "Cyber Attack Suspected in German Woman's Death". The New York Times. Retrieved 19 September 2020.

Further reading[edit]