It looks like Go Daddy isn’t the only company drawing ire from the Internet over support for the Stop Online Piracy Act (SOPA). Sony also supports the act, and Anonymous isn’t too pleased about it.

The hacker group posted a messaging threatening an attack against Sony as well as Sony recording artists that include Justin Bieber and Lady Gaga, if the company continues to support SOPA:

Hello, SONY.

We are Anonymous.

It has come to the attention of the Anonymous activist community that you have chosen to stand by the Stop Online Piracy Act. This act will halt online businesses and restrict access to many sites for many users. Supporting SOPA is like trying to throw an entire company from off a bridge. Your support to the act is a signed death warrant to SONY Company and Associates. Therefore, yet again, we have decided to destroy your network. We will dismantle your phantom from the internet. Prepare to be extinguished. Justice will be swift, and it will be for the people, whether some like it or not. Sony, you have been warned.

To those doubting our powers. We’ve infiltrated the servers of Bank of America, The United States Department of Defense, The United Nations, and Lockheed Martin. In one day.

For their approval to SOPA, we have also declared that our fury be brought upon the following persons. Justin Bieber. Lady Gaga. Kim Kardashian. and Taylor Swift.

Operation Blackout, engaged.
Operation Mayhem, engaged.
Operation LulzXmas, engaged.

We are Anonymous.
We are Legion.
We do not forgive.
We do not forget.

Supporters of SOPA, you should’ve expected us.

If the letter didn’t creep you out enough, check out the video that went along with it:

Anonymous was said to have targeted Sony’s PSN earlier this year, but refuted its involvement in the attack. According to an updated list of SOPA supporters, the Electronics group at Sony is no longer listed, but will that be enough to keep Anonymous away from PSN?

Two weeks ago, Anonymous put out a message in regards to SOPA saying “We’ll Deface The Internet In Protest”. It looks like the internet starts with Sony, according to this threat.

If you have any doubt whether this type of “hacktivism” works, check out what’s going on over at Reddit. Not only has the community gone after Go Daddy, it’s now targeting congress, and anyone else who supports SOPA for that matter.

Will Anonymous successfully scare Sony away from supporting SOPA? Tell us what you think in the comments!

If you’ve taken a lot of photos using Instagram and are looking for a new way to share them, the Boston Music Hack Day app “Carousel” might be right up your alley, developed by hack day participant Johannes Wagener.

If you’re familiar with the show “Mad Men”, there’s an episode where Don Draper creates a marketing campaign for Kodak, in which he tells a story while going through slides on what he calls a “Carousel”. If you’ve never seen it, it’s worth watching the video clip before trying out the app.

With Carousel, you can pull in your Instagram photos and let Don Draper give his best sales pitch using your favorites.

The photos appear on the screen, as if you were a part of the infamous “Mad Men” meeting.

Alternatively, you can record your own soundtrack for the presentation. This is a fun mash-up, giving you a new way to display your photos to friends and family.

Be sure to check out my “Carousel” presentation, and share your own in the comments.

➤ Carousel

At a recent Music Hack Day in Boston, developers got together to play around with new technology and popular platform APIs like Spotify‘s.

Some of the apps were very basic, yet powerful, and some need a coat a paint on them before they get presented to the masses. And then there’s Spartify.

Spartify is a web app that gives control to multiple people to create a music playlist on the fly, using Spotify.

Developed by Andreas Blixt and Ricardo Vice Santos, Spotify lets you set up a “party” and turn the music choices over to everyone with the party code. The idea is genius.

Here’s how the duo explains Spartify:

Host a Party and let guests choose what songs to play on Spotify. No more huddling in front of one computer or messing up the queue! What if they’re all drunk? Don’t worry, We’ll fill it up for ya!

Set up a Spotify House Party

By simply clicking “Start a Party”, you are given a code to give out to your friends that they can enter from any computer or mobile phone on the Spartify site.

Your friends are then presented with a search box that uses Spotify’s API, and each track it finds has a +1 button next to it. By clicking the +1, you add the track to the party playlist.

All you have to do is set one computer as the host, and the Spotify desktop app will open up and play with Spartify tells it to. Your friends can even tap the +1 on songs in the playlist to promote it to the top of the list. If people start drinking too much and stop requesting tracks, Spartify will play similar tracks no matter what.

The app uses The Echonest API which is being extremely popular with hackers who are playing around with music technology and apps. It provides aggregated data with a smart layer on top of it, which lets recommendation come to life combined with apps like Spotify.

The next time you’re having a party, you might want to forget about iTunes, since you have to pay for each track. Having the huge Spotify database at your disposal during any party will make sure the beat goes on and on.

➤ Spartify

Even if you’re not a Facebook developer there has been a “hack” of sorts in place to become a developer and gain early access to your Facebook timeline, if you didn’t want to sign up and wait.

At this time, it is not known if Facebook’s Timeline will be available to everyone on October 19th, but as you can see by the screenshot above, Timelines will be published publicly on that date. However, when most of us were getting our Timeline, we weren’t shown a date at all, so this is a recent update from Facebook.

We’ve reached out to Facebook for more information about the Timeline launch, but have yet to hear back. We will keep you updated.

UPDATE: According to Liz Gannes, you are given a 7 day grace period before publishing your Timeline. This date may just be that. The tip came in last night, so when we tested today, we both saw the 19th. However, the tipster was outside of the US, thus it was 7 days previous to the 19th for him at the time. We will continue to monitor Timeline’s arrival.

Thanks to @JPKing88 who spotted this and tipped The Next Web.

Fox has found itself the target of a hacking campaign once again after attackers managed to compromise the Fox News Politics Twitter account and used it to spread misinformation that the US President had been shot and killed.

Hacking group the “Scriptkiddies” claimed responsibility for the hack, immediately tweeting the following message:

Fox news politics hacked by the scriptkiddies! http://t.co/6yZDcTS more embarrassment for FoxNews is imitate.

Whilst the group doesn’t affiliate itself with the loose online collective Anonymous, or the now disbanded LulzSec, Scriptkiddies reached out to the former to extend its support, offering help with the now infamous “AntiSec” campaign. It also followed closely in the steps of LulzSec by directing visitors to the group’s official Twitter account which, unlike its more established and revered predecessors, was suspended within hours of the account being popularised.

The group quickly set up a new account, which at the time of writing contains one tweet:

Our old twitter was suspended @TheScriptKiddie here is the new, hopefully permanent, address. @FoxNewsPolitics just hacked.

With full control of a Twitter account with 33,000 followers, the Scriptkiddies group began a campaign of misinformation which first attempted to trick followers into believing the account was back in Fox News’ control, before reporting that President Obama had been shot and had then died:

As America wakes up to celebrate Independence Day, many could be duped into believing the President had been gunned down, especially as they would believe news was being reported by a reputable outlet with an established following.

Also, as we published this report, the group deleted tweets detailing the hack so that the news would appear more authentic.

The group links back to 4chan, a site which is widely reported to house many members that associate themselves with the Anonymous collective, following advice from one such member which suggested they do the following:

If you had tweeted some fake news (i.e. Fox News sources say Obama died of a heart attack this evening), it would have had a bigger impact. Just saying. Others would have taken it over and sourced it to Fox News.

It is not known whether Fox News is aware of the compromise, we have reached out to them for comment.

Update: Think Magazine, a campus publication from Stony Brook University, scored an interview with the attackers:

“I would consider us to be close in relation [to Anonymous], 2 of the members of our group were members of Anonymous,” said a representative of The Script Kiddies, who, for reasons that should be quite clear, asked to remain, yes, anonymous. “I was a member of Anonymous. We hope to be working with them soon.”

We are looking to find information about corporations to assist with antisec. Fox News was selected because we figured their security would be just as much of a joke as their reporting. It will be a never ending battle

The names change from time to time like LulzSec and Anonymous or Script Kiddies. But [there] will always be a group of people that need to stand up for everyone else and attempt to keep the government in balance with it’s people. Without groups like Anonymous, what is there to prevent corruption?

It’s been a whirlwind few months for LulzSecurity (LulzSec), bursting onto the tech scene with the high-profile hacks of US TV network Fox, moving on to compound Japanese electronics giant Sony, taunting its detractors as they sought to expose row after row of SQL database entries in high-profile government and agency websites.

On Saturday, LulzSec announced on Twitter that after 50 days of “anarchic lulz” it was to cease operations, dropping its largest collection of compromised data in torrent file posted to The Pirate Bay. The 457.84MB download contained information including AOL internal data, AT&T internal data and the “FBI being silly” among its contents.

In 50 days, the group dominated headlines of nearly every print and online news agency across the world, distanced itself from the arrest of Ryan Cleary by the Metropolitan Police and antagonized whoever it could, simply “for the lulz”. With each day, we got to know more about the group; what its motivations were, how it was able to steal so much data and the identities of its members were supposedly revealed on a number of occasions.

With the group now apparently disbanded, here’s a look back at 50 days of LulzSec’s exploits.

X-Factor, Fox and PBS

On May 7, LulzSecurity emerged on Twitter, registering the @LulzSec username. Posting its first tweet, the group detailed the compromise of Fox.com with the message:

“FOX.COM HACKED! # MySQL version: (5.1.47-log) running on 10.96.57.102 (www.fox.com) #Fox #hacked –> #XFACTOR <–”

Ironically, we reported news of the attack five days before LulzSec announced its haul, not knowing at the time who was behind the hack that was designed to expose details of applicants to The X Factor. The group didn’t have its own website at the time, so it took to the world’s most well-known torrent hosting website The Pirate Bay to release hundreds of thousands of names, email addresses, telephone numbers and street addresses of people wanting a shot at becoming the next big star.

In its first day, the group was happy to have amassed 50 followers, little did it know that it would be a drop in the ocean compared to now many followers it would accumulate in the days that followed.

Three days passed between The X Factor leak and its next big release, Fox.com’s “innerworkings” and a database drop of Fox’s sales database. During this time, “The Lulz Boat” was coined, ASCII art was drawn up, UK ATM details released and the group highlighted the password used by the Vice President of Fox.

On May 12, LulzSec announced it was contemplating creating its own website to host its releases and give it a proper presence on the web, predicting at the time that Twitter might not take kindly to the LulzSec Twitter account. As the next two days passed, the group released more Fox user credentials, teasing that it had data from an FBI affiliate and then announced that LulzSec had three people maintaining its Twitter account.

It was all quiet on the LulzSec front until it would become one of a long list of attackers that leaked Sony’s details, compromising databases hosted by Sony Japan and releasing them on Pastebin.

LulzSec finally got the press coverage it craved when it posted a seemingly innocuous link on its Twitter feed, linking to US TV network PBS. The tweet “http://www.pbs.org/lulz/ Oh shit, what just happened @PBS?“ linked to a newly created page on the PBS domain but its decision to create a fake news article stating that “2Pac still alive in New Zealand” thrust the group into the spotlight, with every technology and online news outlet linking to the hack and LulzSec’s announcements.

The group had gained access to PBS’s internal hosts, its database list, staff database, authors database, pressroom users database, stations database and MySQL users database – which, at the time was its biggest overall haul of company-wide data. It was believed that the group took action after the network aired a show which was seen to paint whistleblowing website WikiLeaks in a bad light.

To make things worse, LulzSec adopted the theme-song from the Love Boat, all the while soliciting for Bitcoin donations.

LulzSec Enemies, LulzSecurity.com and More Sony “Ownage”

With more high-profile hacks, LulzSec found itself the target of other members of the Internet (in)-security scene, most notably @th3j35t3r, an attacker (or group of attackers) which was hellbent on exposing the identities of LulzSec members. Realizing that this was the case, LulzSec immediately began DDOS’ing the IRC servers used by th3j35t3r and also servers used by hacking magazine 2600.

On June 2, LulzSec released what it referred to as “Sownage”, a complete dump of Sony Pictures’ codes, coupons and user databases, stating that it had released details on “1,000,000 users’ personal information, including passwords, email addresses, home addresses, dates of birth, and all Sony opt-in data associated with their accounts”.

The following day, the group announced it had hacked Nintendo but did not release data stolen in the attack. However, a more notable release was issued the same day, an attack on InfraGard Atlanta’s user database, a company that was affiliated with the FBI.

The group issued a press release to accompany the hack, stating:

“It has come to our unfortunate attention that NATO and our good friend Barrack Osama-Llama 24th-century Obama have recently upped the stakes with regard to hacking.

They now treat hacking as an act of war. So, we just hacked an FBI-affiliated website (InfraGard, specifically the Atlanta chapter) and leaked its user base. We also took complete control over the site and defaced it, check it out if it’s still up: http://infragardatlanta.org/.”

Details emerged that the companies’ owner Karim Hijazi asked LulzSec to help him “eliminate [his] competitors”, which the group didn’t take kindly to. The group decided to release nearly 1,000 of Hijazi’s personal emails, as well as the IRC log where he spoke with the group.

At the beginning of June, LulzSec started releasing details of its exploits on LulzSecurity.com, presenting a united presence for its releases, making sure that copycats where unable to utilize Pastebin to piggyback of its name.

On June 6, the group crossed the 75,000 Twitter followers milestone:

Compromising The NHS, The Senate And Getting The Taiwan News Treatment

June 9 saw LulzSec admit it had managed to infiltrate the servers of the National Health Service (NHS) in the UK, but in a move away from its typical policy, the group decided to email NHS administrators and alert them to security holes in their online portal.

This gained LulzSec more press coverage, helping to boost the group’s Twitter following to above 100,000 followers.

This is a two page report, please click the button below to read the article in its entirety or to read the second page.

Within four days, LulzSec released a huge dump of adult website login credentials, continued its assault on popular online games by releasing internal data from Fallout creators Bethesda and captured the internal databases of Senate.gov, issuing the following statement:

“We don’t like the US government very much. Their boats are weak, their lulz are low, and their sites aren’t very secure.

In an attempt to help them fix their issues, we’ve decided to donate additional lulz in the form of owning them some more!

This is a small, just-for-kicks release of some internal data from Senate.gov – is this an act of war, gentlemen? Problem?”

On June 16, 62,000 random user email addresses and passwords were released, with LulzSec prompting its Twitter followers to access accounts to gain any sensitive information they can find.

“Be creative instead of being a potato. Try PayPal combinations, Twitter, Facebook, eBay, Runescape. Pick a target from the list.”

Within minutes, Lulz Security’s Twitter followers had already downloaded the file, hosted by MediaFire, 3200 times. This lead to LulzSec getting the Taiwanese news treatment:

Anonymous, Arrests And Arizona

With many of LulzSec’s followers believing the group was at war with Anonymous, the group’s announcement on June 20 may have been a massive shock. With LulzSec starting its new “AntiSec” campaign, it decided to throw open the doors to its new project and partner with Anonymous for its operation to “open fire on any government or agency that crosses their path”.

LulzSec’s Twitter followers began tagging real-world objects with #AntiSec, making sure to place the hashtag on websites if they had successfully gained access. During this time, the group turned to DDOS attacks on numerous targets, including the UK’s SOCA police website.

On June 21, the authorities took what they thought were first steps in bringing the members of LulzSec to justice. The Metropolitan Police, in collaboration with Essex Police and the FBI, arrested 19-year-old student Ryan Cleary, a suspected member of LulzSec.

The teenager was arrested on suspicion of contravening the Computer Misuse Act, and Fraud Act offences and was taken to a central London police station, whilst forces searched a residential address in Wickford, Essex, following the arrest.

Cleary now faces five charges, including one related to a recent Distributed Denial of Service (DDoS) attack on Britain’s Serious Organized Crime Agency’s website, which has been attributed to the LulzSec hacker group. The earliest charges he faces are from October and November last year and relate to attacks on the British Phonographic Industry (BPI) and the International Federation of the Phonographic Industry (IFPI) respectively. It’s telling that Cleary was charged with just one attack that is linked with LulzSec.

The group, which remained silent on the matter for a number of hours after the arrest, issued a response to the charges:

“Seems the glorious leader of LulzSec got arrested, it’s all over now…wait…we’re all still here! Which poor bastard did they take down?”

It later transpired that Cleary was only mildly associated with the group, mainly due to the fact he ran their IRC servers. It is not yet known if he took part in any of the more recent attacks.

On the same day as the arrest, LulzSec was also linked with an attack on the UK 2011 Census. We noted at the time that, if true, the Pastebin release was a step away from its traditional release process, as it was not accompanied with a tweet. The group later confirmed it was not behind an attack on the Census, with the Office of National Statistics confirming no intrusion was detected.

As the hacking group neared its final goodbye, it made sure to release “hundreds of private intelligence bulletins, training manuals, personal email correspondence, names, phone numbers, addresses and passwords belonging to Arizona law enforcement.”

Press and officials at the police department criticized LulzSec for the leak, saying it put officers at risk – LulzSec, of course, didn’t care, instead it joked about the content that the files contained.

Newsnight, Leaked Identities And A Goodbye

As the weekend fast approached, LulzSec did something it hadn’t done before – it engaged the press. Perhaps knowing it was about to call time on its operations, the group spoke with Gawker but made its debut on British TV in an interview on BBC current affair programme Newsnight.

In the interview, one Lulzsec member “Whirlpool” discussed LulzSec’s agenda and motives. Claiming “People fear new rules, people fear the higher-ups and we’re here to bring them down a few notches.”

Speaking via an online chat (full transcription can now be found here), Whirlpool revealed little new information, however one interesting nugget did come to light. LulzSec has been using the much discussed Bitcoin currency to receive donations. In total, Whirlpool claims LulzSec has received over $18,000 from fans and supporters. Whether that figure covers the costs involved in hacking major organizations, we can’t be sure, but when asked whether LulzSec planned to hack with political or monetary motivations in future, Whirlpool replied:

“At some point our operations will have to veer onto the more serious side of things that’s true. Our pirate hat is whitehat, grayhat and blackhat, so we often entertain many flavour of public. But yes, enjoying the breeze of politically-motivated ethical hacking is more fulfilling.”

We noted at the time that there was definitely no sense of LulzSec’s hacking crusade coming to an end any time soon. The group even posted the following message to its Twitter account:

“Monday release is being planned. We’re still here, fine sirs.”

So it came as a surprise to LulzSec’s 250,000 strong Twitter following when the group decided it was calling time on its operations. Posting “we have a very special surprise for you tonight!”, the group quickly followed that with a press release via Pastebin (of course) saying that it was quitting after fifty days of activity.

“For the past 50 days we’ve been disrupting and exposing corporations, governments, often the general population itself, and quite possibly everything in between, just because we could,” the group notes. “While we are responsible for everything that The Lulz Boat is, we are not tied to this identity permanently.”

“Our planned 50 day cruise has expired, and we must now sail into the distance, leaving behind – we hope – inspiration, fear, denial, happiness, approval, disapproval, mockery, embarrassment, thoughtfulness, jealousy, hate, even love.”

If LulzSec is telling the truth and this really is the end, it’s gone out with what seems like a bang. A torrent file posted to The Pirate Bay points to a 457.84MB download which claims to contain information that includes AOL internal data, AT&T internal data and the “FBI being silly” among its contents. You can read a breakdown of the files in our report, located here.

What was the reason behind the group’s sudden decision to stop its campaign? We may never know. However, shortly after the announcement, a file was released by online group “The A Team” which claimed to list and name each member of LulzSec, suggesting that some of its members were also affiliated with Gnosis, the online collective that hacked Gawker Media’s portfolio of websites.

The revelation may have helped the group decide that its time was coming to an end, before it found itself subjected to interrogations by the authorities.

With the dust still settling around the “50 days of Lulz”, some will be glad to see the back of the hacking group (if it is really the end) whilst some will be genuinely sad to see them disband. The group says supporters should assist Anonymous with its operations, helping the loose online collective with its own campaigns but also to continue Operation AntiSec.

The LulzSecurity.com site will be left and will expire, it is not known what will happen to its Twitter account.

No matter what your opinion on the group is, there is no doubt you checked your accounts and made sure they were that extra little bit more secure. Perhaps that was the goal of LulzSec all along, to ensure that Internet users took more care with their security, whilst declaring war against “corrupt” governments and agencies.

Japanese car manufacturer Honda has warned its customers that personal details, which includes vehicle registrations could have been compromised by hackers.

It is thought that over 2 million customers have had their details stolen from an e-mail database, a database that is thought to be hosted by SIlverpop Systems.

Silverpop Systems is the company that found its servers compromised two weeks ago, with private records of both McDonalds and DeviantArt customers and 105 other companies stolen.

Names, login names, e-mail addresses and vehicle identification numbers where stolen from Honda with another list containing three million email addresses of Acura owners also being copied.

Customers have been warned to be on the lookout for phishing attacks as a result of the breach – with it likely that the details will have been sold on to spammers or phishing companies that will use personalised emails containing vehicle registration numbers and addresses to trick additional information from the account holders.

TechEye details Honda’s statement:

“Be cautious of unsolicited emails requesting personal information. Often, these communications can look official. Be cautious of unsolicited emails requesting personal information.

If ever asked for this information, you can be confident it is not from us.”