Ryan Cleary, Ryan Ackroyd, Jake Davis and a 17-year-old male appeared in a British court May 11, and were told they have to return June 25 to enter pleas for indictments on various computer-related crimes.
Four of the eight counts listed in an updated British indictment Friday were levelled solely on Cleary, the founder of the current version of Encyclopedia Dramatica. He is accused of supplying a botnet — or a network of thousands of infected computers that can be used to paralyze websites — to others, and operating one himself to attack the website of DreamHost, a web hosting company. He is also accused of “installing and/or altering computer programs” on computers at the Pentagon controlled by the U.S. Air Force, between May 1 and June 22, 2011.
On May 2 2012, a US Federal indictment was made public outlining computer crime-related charges against alleged Lulzsec members Jeremy Hammond of the US, Donncha O'Cearrbhail and Darren Martyn of Ireland, and Jake Davis and Ryan Ackroyd of Britain. Of particular interest is the mention of an anonymous, unindicted co-conspirator on page 23. The indictment itself can be found at Cryptome.
In related news, MLT, an unnamed 17 year-old member of TeaMp0isoN from Newcastle was arrested by local police on May 9 on suspicion of offenses under the Computer Misuse Act.
The arrested teen was described by Scotland Yard as being the “spokesperson” of TeamPoison.
"He has been taken to a local police station for interview. Computer equipment has been seized and is undergoing a detailed forensic examination," the statement read.
If this paste is to be believed, MLT is a customer of srsvps, a business run by the principals behind encyclopediadramatica.se. The supposedly bullet proof, offshore srsvps is not much protection if one's computers, or the home computers of one's co-conspirators, are seized.
Scroogle Shuts Down for Good
scroogle-privacy-first-search-engine-shuts-down-for-good
Critics of Brandt have always incorrectly assumed this blog was owned by him. In reality, he is just one of many people who have passed on tips and research to me. In a recent email, he mentioned that he suspected "friends of Ryan Cleary" in coordinating the DDOS attacks that led to his servers being taken off-line.
This blog is hosted by Google and is immune to DDOS attacks. It won't be going anywhere. Please visit the main page of this blog for more on Ryan Cleary and his friends who run Encyclopedia Dramatica.
Scroogle, the search engine operated by privacy militant and self-appointed Wikipedia watchdog Daniel Brandt, has folded for real. After enduring DDOS attacks “around the clock” that sent a flood of unsustainable traffic to his servers, Mr. Brandt took down the search engine along with his other four domains, namebase.org, google-watch.org, cia-on-campus.org, and book-grab.com. His theory is that he was being attacked by hackers with a personal vendetta.
Critics of Brandt have always incorrectly assumed this blog was owned by him. In reality, he is just one of many people who have passed on tips and research to me. In a recent email, he mentioned that he suspected "friends of Ryan Cleary" in coordinating the DDOS attacks that led to his servers being taken off-line.
This blog is hosted by Google and is immune to DDOS attacks. It won't be going anywhere. Please visit the main page of this blog for more on Ryan Cleary and his friends who run Encyclopedia Dramatica.
Gwapo, DDoS King and Satisfied Cloudflare Customer
From a news story by SC magazine.
A hacker is selling a reportedly booming distributed denial of service (DDoS) attack service and has taken to YouTube to pull new clients.
The service was first launched in January on Hack Forums and has so far recruited several large enterprises who have paid to have rival organisations attacked, the operator Gwapo told SC Magazine.
…
His own site, ddoes.com, was protected by CloudFlare, an anti-DDoS provider which formerly protected LulzSec's website from a barrage of cyber attacks.
See also the previous blog post Cloudflare Enables Miscreants.
The Reach of Encyclopedia Dramatica
Whether some people like it or not, ED is a very popular site. It serves between one and three million pages per day. - Zaiger, exaggerating his audience size.
If Zaiger's statement was true, Encyclopedia Dramatica should be earning 500 to 1500 US dollars per day, based on a very conservative estimate of an ad income of $.50 per 1,000 page views.
 |
| global reach of this blog with 28 posts, compared to encyclopediadramtica.se, with 10,000 "articles" |
Ryan Cleary Is Back In Jail
Ryan Cleary, former owner of the resurrected Encyclopedia Dramatica, was jailed March 5 for violating his bail conditions.
UK LulzSec suspect jailed for contacting US hacker
Published March 31, 2012
Associated Press
LONDON -- The lawyer for a 19-year-old Briton suspected of links to the hacking group Lulz Security says her client's back behind bars for breaching his bail conditions.
Karen Todner says that teenager Ryan Cleary had sent a handful of electronic messages to LulzSec leader Hector Xavier Monsegur over the Christmas period, despite being banned from the Internet as part of his bail agreement.
London's Metropolitan Police say Cleary was rearrested on March 5, a day before the FBI disclosed that Monsegur, better known as Sabu, had been secretly working as an informant.
Todner said Saturday that Cleary is now being held in Chelmsford Prison, about 35 miles northeast of London.
He is due to reappear before a judge in May.
Here is Garrett Moore tweeting with Sabu (Hector Xavier Monsegur) last September, long after Sabu's arrest and his cooperation with the Feds started.
UK LulzSec suspect jailed for contacting US hacker
Published March 31, 2012
Associated Press
LONDON -- The lawyer for a 19-year-old Briton suspected of links to the hacking group Lulz Security says her client's back behind bars for breaching his bail conditions.
Karen Todner says that teenager Ryan Cleary had sent a handful of electronic messages to LulzSec leader Hector Xavier Monsegur over the Christmas period, despite being banned from the Internet as part of his bail agreement.
London's Metropolitan Police say Cleary was rearrested on March 5, a day before the FBI disclosed that Monsegur, better known as Sabu, had been secretly working as an informant.
Todner said Saturday that Cleary is now being held in Chelmsford Prison, about 35 miles northeast of London.
He is due to reappear before a judge in May.
Here is Garrett Moore tweeting with Sabu (Hector Xavier Monsegur) last September, long after Sabu's arrest and his cooperation with the Feds started.
The people who run Encyclopedia Dramatica
|
|
| |||||||
|
|
|
Mail.encyclopediadramatica.ch used to point to 209.212.149.97, which Encyclopediadramatica.ch used as a mail server.
Zalgo is an IRC services bot used on ED.ch's IRC channels. it resides at 209.212.149.109. Zalgo is written and operated by e.
[Jun 21 2011 23:33:52] *** Joins: e (~e@64.9.157.103)
[Jun 22 2011 00:09:25] *** Joins: e (~e@64.9.157.104) These IP addresses trace to a data center in Houston Texas
[May 1 2011 14:17:12] *** Joins: thx[ITM] (~root@209.212.149.109)
[May 1 2011 14:17:12] *** Joins: thx[ITM] (~root@209.212.149.109)
[May 4 2011 18:18:13] <Ryan> thx[ITM]: = e
[May 11 2011 22:23:56] *** Joins: Nyse (~nyse@209.212.149.109)
[Jul 8 2011 00:02:33] *** Nyse is now known as e
e owns the root account at 209.212.149.109 and is one of the people in charge of ED.se:
He is also known as ___e on Twitter, e000 on Github, e000 on Reddit and was Edgeworth E. Euler on Facebook.
On both Twitter and formerly on Facebook, his tag line is "Hi, my name is Edgeworth E. Euler, I live in Birmingham in the United Kingdoms, my favourite color is purple, and I am a faggot."
That is half right. E's name is not Edgeworth E. Euler. He doesn't live in "Birmingham in the United Kingdoms", though he was webmaster of the defunct MuslimsInEngland. He currently lives in Spring Texas and owns Muslimsinamerica.wordpress.com.
This photo seems to confirm his last two assertions.
ED is down March 2012
Update: After SWITCH was contacted and asked for the reason why the nameservers for encyclopediadramatica.ch were deleted, a source responded, "encyclopediadramatica.ch had to be inactivated and blocked due to a court order from the criminal prosecutor of the Canton of St. Gallen."
Update #2: At roughly the same time ed.ch was inactivated, the domain registration was changed to list Ryan's mum, Rita as the technical contact.
Domain name:
encyclopediadramatica.ch
Holder of domain name:
EDrama Limited
Cleary Ryan
South Beech Avenue 10
GB-SS118AH Wickford
United Kingdom
Contractual Language: English
Technical contact:
EDrama Limited
Cleary Rita
South Beech Avenue 10
GB-SS118AH Wickford
United Kingdom
Yesterday, the nameservers for encyclopediadramatica.ch were deleted from the registrar for Swiss domain names, SWITCH.
Last October, Sven Slootweg changed the registrar records to indicate that the new owner was Ryan Cleary. Speculation leads to the possibility that representatives of Cleary are responsible for deleting the nameservers from the records, since he agreed to avoid using the internet on condition of his release from jail while he awaits trial on multiple charges.
Update #2: At roughly the same time ed.ch was inactivated, the domain registration was changed to list Ryan's mum, Rita as the technical contact.
Domain name:
encyclopediadramatica.ch
Holder of domain name:
EDrama Limited
Cleary Ryan
South Beech Avenue 10
GB-SS118AH Wickford
United Kingdom
Contractual Language: English
Technical contact:
EDrama Limited
Cleary Rita
South Beech Avenue 10
GB-SS118AH Wickford
United Kingdom
Yesterday, the nameservers for encyclopediadramatica.ch were deleted from the registrar for Swiss domain names, SWITCH.
Last October, Sven Slootweg changed the registrar records to indicate that the new owner was Ryan Cleary. Speculation leads to the possibility that representatives of Cleary are responsible for deleting the nameservers from the records, since he agreed to avoid using the internet on condition of his release from jail while he awaits trial on multiple charges.
Die Revolution sagt ich bin, ich war, ich werde sein.
anonymouSabu The federal government is run by a bunch of fucking cowards. Don't give in to these people. Fight back. Stay strong. 1 day agoThe first mention that Hector Monsegur = Sabu seems to have happened around June 22 2011, roughly the same time both he and Ryan Cleary were arrested. Monsegur has been working with the FBI since.
I wonder where Garrett's gone off to, and if Saad has ever had a friendly chat with the Feds.
Netblocks owned by "EDrama Ltd"
Queried whois.ripe.net with "-B 37.59.72.64"...
% Information related to '37.59.72.64 - 37.59.72.79'
inetnum: 37.59.72.64 - 37.59.72.79
netname: EDRAMA2
descr: EDrama Ltd
country: CH
org: ORG-OC30-RIPE
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
changed: noc@ovh.net 20120202
source: RIPE
anonnews.org 37.59.72.67
tahoe-gateway.cryto.net 37.59.72.67
lists.encyclopediadramatica.ch 37.59.72.68
mail.edrama.us a 37.59.72.74
mail.encyclopediadramatica.ch 37.59.72.74
cryto.net and anonnews.org are of course owned by Joepie91 AKA Sven Slootweg. He has changed the registration of anonnews to claim that the domain is owned by Pirate Bay co-founder Gottfrid Swartholm. Slootweg also changed the domain registration of encyclopediadramatica.ch to claim it is owned by Ryan Cleary, who is currently awaiting trial In England.
Queried whois.ripe.net with "-B 37.59.72.96"...
% Information related to '37.59.72.96 - 37.59.72.111'
inetnum: 37.59.72.96 - 37.59.72.111
netname: EDRAMANET1
descr: EDrama Ltd
country: CH
org: ORG-OC30-RIPE
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
changed: noc@ovh.net 20120202
source: RIPE
srsvps.com 37.59.72.101
% Information related to '37.59.72.64 - 37.59.72.79'
inetnum: 37.59.72.64 - 37.59.72.79
netname: EDRAMA2
descr: EDrama Ltd
country: CH
org: ORG-OC30-RIPE
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
changed: noc@ovh.net 20120202
source: RIPE
anonnews.org 37.59.72.67
tahoe-gateway.cryto.net 37.59.72.67
lists.encyclopediadramatica.ch 37.59.72.68
mail.edrama.us a 37.59.72.74
mail.encyclopediadramatica.ch 37.59.72.74
cryto.net and anonnews.org are of course owned by Joepie91 AKA Sven Slootweg. He has changed the registration of anonnews to claim that the domain is owned by Pirate Bay co-founder Gottfrid Swartholm. Slootweg also changed the domain registration of encyclopediadramatica.ch to claim it is owned by Ryan Cleary, who is currently awaiting trial In England.
Queried whois.ripe.net with "-B 37.59.72.96"...
% Information related to '37.59.72.96 - 37.59.72.111'
inetnum: 37.59.72.96 - 37.59.72.111
netname: EDRAMANET1
descr: EDrama Ltd
country: CH
org: ORG-OC30-RIPE
admin-c: OTC2-RIPE
tech-c: OTC2-RIPE
status: ASSIGNED PA
mnt-by: OVH-MNT
changed: noc@ovh.net 20120202
source: RIPE
srsvps.com 37.59.72.101
The current hosting provider of encyclopediadramatica.ch
Updated Feb 5 2012
ED.ch is currently not hiding behind Cloudflare, only using their nameservers. Their hosting provider is Gridlane, a subsidiary of Portlane.
The following was published Sep 9 2011, with a few edits added at later dates.
Saad Naveed of Spring Texas writes,
"DMCA and other petty threats you may throw at us do not apply as our content is hosted in Sweden and Ukraine which does not recognize US copyright law."
Here is one of their servers. It is located in the Ukraine.
~$ nslookup 213.155.18.31 This server appears to be off line as of Oct 26 2011
Here is another one of their servers, hosted by Gridlane VPS. It's located in Stockholm Sweden.
~$ nslookup 46.246.111.72
% Information related to '46.246.104.0 - 46.246.111.255'
inetnum: 46.246.104.0 - 46.246.111.255
netname: CLOUDHOSTING-NET
descr: Cloud Hosting
country: SE
admin-c: PN1967-RIPE
tech-c: PN1967-RIPE
status: ASSIGNED PA
mnt-by: MNT-PORTLANE
source: RIPE # Filtered
role: Portlane NOC
address: BOX 6322
address: 10235 Stockholm
address: Sweden
e-mail: noc@portlane.com
admin-c: PN1967-RIPE
tech-c: PN1967-RIPE
nic-hdl: PN1967-RIPE
mnt-by: MNT-PORTLANE
source: RIPE # Filtered
This is a domain owned by Garrett Moore. Sometimes ED's servers are subdomains, such as lb1-s.edrama.us.
~$ whois edrama.us
Domain Name: EDRAMA.US
Domain ID: D33682134-US
Sponsoring Registrar: ENOM, INC.
Registrar URL (registration services): whois.enom.com
Domain Status: clientTransferProhibited
Registrant ID: 32B149302F38594A
Registrant Name: Garrett Moore
Registrant Organization: Dramatica AG
Registrant Address1: 376 Jeru Blvd
Registrant City: Tarpon Springs
Registrant State/Province: FL
Registrant Postal Code: 34689
Registrant Country: United States
Registrant Country Code: US
Registrant Phone Number: +1.4194924437
Registrant Email: abuse@encyclopediadramatica.ch
Registrant Application Purpose: P2
Registrant Nexus Category: C32/CH
Administrative Contact ID: 1770B344199BF5EA
Administrative Contact Name: Garrett Moore
Administrative Contact Organization: Dramatica AG
Administrative Contact Address1: 376 Jeru Blvd
Administrative Contact City: Tarpon Springs
Administrative Contact State/Province: FL
Administrative Contact Postal Code: 34689
Administrative Contact Country: United States
Administrative Contact Country Code: US
Administrative Contact Phone Number: +1.4194924437
Administrative Contact Email: abuse@encyclopediadramatica.ch
Of course, that isn't Garrett's current address, and there is no such legal entity as Dramatica AG.
Here is an incomplete history of ED.ch's hosting providers.
April 15 2011
69.65.55.21
June 27 2011
web.encyclopediadramatica.ch: 216.14.104.1
sql.encyclopediadramatica.ch: 216.14.104.2
June 30 2011
direct.encyclopediadramatica.ch: 69.65.55.21
July 12 2011
184.164.147.135
July 22 2011
85.10.206.54
August 31 2011
94.23.168.77
September 14 2011
static.encyclopediadramatica.ch, images.encyclopediadramatica.ch: 85.10.206.54
September 19 2011
direct-connect.encyclopediadramatica.ch: 173.204.20.100
September 22 2011
direct-connect.encyclopediadramatica.ch, lb1.edrama.us: 31.22.165.46
September 23 2011
46.246.111.72
October 2 2011
213.155.18.13
ED.ch is currently not hiding behind Cloudflare, only using their nameservers. Their hosting provider is Gridlane, a subsidiary of Portlane.
Address lookup
| canonical name | encyclopediadramatica.ch. |
| aliases | |
| addresses | 46.246.89.252 193.105.134.17 |
Domain Whois record
Queried whois.nic.ch with "encyclopediadramatica.ch"...Domain name: encyclopediadramatica.ch Holder of domain name: EDrama Limited Cleary Ryan South Beech Avenue 10 GB-SS118AH Wickford United Kingdom Contractual Language: English Technical contact: EDrama Limited Cleary Ryan South Beech Avenue 10 GB-SS118AH Wickford United Kingdom DNSSEC:N Name servers: jeff.ns.cloudflare.com rita.ns.cloudflare.com
Network Whois record
Queried whois.ripe.net with "-B 46.246.89.252"...% Information related to '46.246.0.0 - 46.246.127.255'
inetnum: 46.246.0.0 - 46.246.127.255
netname: SE-PORTLANE-20110127
descr: Power och Random T-Lane AB
country: SE
org: ORG-PS39-RIPE
admin-c: PN1967-RIPE
tech-c: PN1967-RIPE
status: ALLOCATED PA
mnt-by: RIPE-NCC-HM-MNT
mnt-lower: MNT-PORTLANE
mnt-routes: MNT-PORTLANE
notify: boney@portlane.com
changed: hostmaster@ripe.net 20110127
source: RIPE
organisation: ORG-PS39-RIPE
org-name: Power och Random T-Lane AB
org-type: LIR
address: Power och Random T-Lane AB
BOX 6322
10235 Stockholm
Sweden
phone: +46(0)855116515
e-mail: noc@portlane.com
admin-c: PN1967-RIPE
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: MNT-PORTLANE
mnt-by: RIPE-NCC-HM-MNTrole: Portlane NOC address: BOX 6322 address: 10235 Stockholm address: Sweden e-mail: noc@portlane.com admin-c: PN1967-RIPE tech-c: PN1967-RIPE nic-hdl: PN1967-RIPE mnt-by: MNT-PORTLANE changed: noc@portlane.com 20110127 source: RIPE % Information related to '46.246.0.0/17AS42708' route: 46.246.0.0/17 descr: Portlane Network origin: AS42708 mnt-by: MNT-PORTLANE changed: noc@portlane.com 20110127 source: RIPE
The following was published Sep 9 2011, with a few edits added at later dates.
Saad Naveed of Spring Texas writes,
"DMCA and other petty threats you may throw at us do not apply as our content is hosted in Sweden and Ukraine which does not recognize US copyright law."
Here is another one of their servers, hosted by Gridlane VPS. It's located in Stockholm Sweden.
~$ nslookup 46.246.111.72
% Information related to '46.246.104.0 - 46.246.111.255'
inetnum: 46.246.104.0 - 46.246.111.255
netname: CLOUDHOSTING-NET
descr: Cloud Hosting
country: SE
admin-c: PN1967-RIPE
tech-c: PN1967-RIPE
status: ASSIGNED PA
mnt-by: MNT-PORTLANE
source: RIPE # Filtered
role: Portlane NOC
address: BOX 6322
address: 10235 Stockholm
address: Sweden
e-mail: noc@portlane.com
admin-c: PN1967-RIPE
tech-c: PN1967-RIPE
nic-hdl: PN1967-RIPE
mnt-by: MNT-PORTLANE
source: RIPE # Filtered
This is a domain owned by Garrett Moore. Sometimes ED's servers are subdomains, such as lb1-s.edrama.us.
~$ whois edrama.us
Domain Name: EDRAMA.US
Domain ID: D33682134-US
Sponsoring Registrar: ENOM, INC.
Registrar URL (registration services): whois.enom.com
Domain Status: clientTransferProhibited
Registrant ID: 32B149302F38594A
Registrant Name: Garrett Moore
Registrant Organization: Dramatica AG
Registrant Address1: 376 Jeru Blvd
Registrant City: Tarpon Springs
Registrant State/Province: FL
Registrant Postal Code: 34689
Registrant Country: United States
Registrant Country Code: US
Registrant Phone Number: +1.4194924437
Registrant Email: abuse@encyclopediadramatica.ch
Registrant Application Purpose: P2
Registrant Nexus Category: C32/CH
Administrative Contact ID: 1770B344199BF5EA
Administrative Contact Name: Garrett Moore
Administrative Contact Organization: Dramatica AG
Administrative Contact Address1: 376 Jeru Blvd
Administrative Contact City: Tarpon Springs
Administrative Contact State/Province: FL
Administrative Contact Postal Code: 34689
Administrative Contact Country: United States
Administrative Contact Country Code: US
Administrative Contact Phone Number: +1.4194924437
Administrative Contact Email: abuse@encyclopediadramatica.ch
Of course, that isn't Garrett's current address, and there is no such legal entity as Dramatica AG.
Here is an incomplete history of ED.ch's hosting providers.
April 15 2011
69.65.55.21
June 27 2011
web.encyclopediadramatica.ch: 216.14.104.1
sql.encyclopediadramatica.ch: 216.14.104.2
June 30 2011
direct.encyclopediadramatica.ch: 69.65.55.21
July 12 2011
184.164.147.135
July 22 2011
85.10.206.54
August 31 2011
94.23.168.77
September 14 2011
static.encyclopediadramatica.ch, images.encyclopediadramatica.ch: 85.10.206.54
September 19 2011
direct-connect.encyclopediadramatica.ch: 173.204.20.100
September 22 2011
direct-connect.encyclopediadramatica.ch, lb1.edrama.us: 31.22.165.46
September 23 2011
46.246.111.72
October 2 2011
213.155.18.13
Jake Davis and Ryan Cleary Get a New Court Date
Update: Sat Feb 4
Ryan Cleary is a subject of discussion during a conference call between agents from the FBI and the Scotland Yard. (The call was surreptitiously joined and recorded by persons unknown.) It appears the case may have been delayed in part because of an investigation of "indecent images" found on Cleary's hard drive.
Friday, 27 January 2012 | Written by Shetland News
Freelance journalist Ryan Gallagher, who attended the hearing said, "delay due to continuing investigation into possible complicity of others" and "Davis' defence will find out more details, including "letters from foreign jurisdictions", on 30 March, when new evidence entered."
Ryan Cleary is a subject of discussion during a conference call between agents from the FBI and the Scotland Yard. (The call was surreptitiously joined and recorded by persons unknown.) It appears the case may have been delayed in part because of an investigation of "indecent images" found on Cleary's hard drive.
7:15 -- How much time is reasonable? I've said 8 weeks. Got Ryan Cleary's indecent images - found by USAF who looked at hard drive. Propose they get dealt with first. That will take 6-8 weeksAt 15:25 of the recording, there's mention of waiting on Cleary's ISP to connect an IP address to his house, and an "extradition squad". He may be making a trip to the US in the future.
13:50 -- Got the final forensic report from USAF re: Ryan Cleary hard drive. 325 pages. Quite a piece of work. We're impressed with it.
Friday, 27 January 2012 | Written by Shetland News
SHETLAND teenager Jake Davis accused of hacking into websites under the pseudonym ‘Topiary’ has had his trial delayed until 11 May.
Davis was due to enter a plea at Southwark Crown Court in London along with fellow accused hacker 19 year old Ryan Cleary, but the trial was pushed back due to a continuing investigation into the “possible complicity of others”, with the case being described a “significant and complex international investigation”.
Freelance journalist Ryan Gallagher, who attended the hearing said, "delay due to continuing investigation into possible complicity of others" and "Davis' defence will find out more details, including "letters from foreign jurisdictions", on 30 March, when new evidence entered."
A 28 year old SadMonkey from St. Louis Missouri
[May 11 2011 19:48:59] *** Joins: Mojo(~home@97-85-145-160.dhcp.stls.mo.charter.com)
[May 11 2011 22:55:44] <Mojo> no. I'm SadMonkey
[May 25 2011 00:38:36] <Mojo> I'm from St. Louis and Used to live in Ferguson.
[Aug 17 2011 22:02:08] <Mojo> http://josephevers.blogspot.com/p/encyclopediadramaticach-irc-users.html KILL THAT MOTHERFUCKER!
[Nov 30 2011 14:34:12] <Mojo> Hey guys. This may be old news, but we took care of the guy who ran the josephevers blog, right?
[May 11 2011 22:55:44] <Mojo> no. I'm SadMonkey
[May 25 2011 00:38:36] <Mojo> I'm from St. Louis and Used to live in Ferguson.
[Aug 17 2011 22:02:08] <Mojo> http://josephevers.blogspot.com/p/encyclopediadramaticach-irc-users.html KILL THAT MOTHERFUCKER!
[Nov 30 2011 14:34:12] <Mojo> Hey guys. This may be old news, but we took care of the guy who ran the josephevers blog, right?
ED's Google shopping cart
On Sep 5 2011:
Maybe something you did caused your last three hosts to drop you.
This is the same shopping cart that Ryan Cleary used when he was running ED, and that is his home address. One condition of his release from jail while he awaits trial is he is forbidden from using the internet.
Perhaps his attorney, Ms. Karen Todner should be informed.
garrett changes topic to "EncyclopediaDramatica sucks. | Several hundred dollars worth of hardware is toasted, we need suggestions/donations for some new servers. PM garrett if you know of a host who can handle us."
Maybe something you did caused your last three hosts to drop you.
This is the same shopping cart that Ryan Cleary used when he was running ED, and that is his home address. One condition of his release from jail while he awaits trial is he is forbidden from using the internet.
The judge issued a stark warning to both defendants to comply with their bail conditions as he fixed their plea and case management hearing for January 27, 2012.
Perhaps his attorney, Ms. Karen Todner should be informed.
Cloudflare Enables Miscreants
 |
| Matthew Prince, founder and CEO of Cloundflare |
CloudFlare provides security, a CDN-like service, high-level compression and web content optimization, according to Web Host Industry Review.
Cloudflare says
On average, a website on CloudFlare ...
... loads twice as fast
... uses 60% less bandwidth
... has 65% fewer requests
... is way more secure
All for free!
Because Cloudflare reduces bandwidth usage, obscures who is the actual hosting company of a website and offers its basic services for free, it has become popular among low-budget websites with controversial content.
An endorsement by Cloudflare's most infamous client to date, Lulzsec, helped fuel a rapid growth that in turn helped them to secure an additional US$20 million in funding. Lulzsec's webmaster and spokesman, Jake Davis, was arrested July 28 2011 and charged with crimes relating to Lulzsec's activities. Their website was used to host documents that were obtained by stealing databases and other files from servers they had compromised by SQL injection or zero day exploits.
SECTION 11: PROHIBITED USES
You shall not post, transmit, retransmit, cache, or store material on or through CloudFlare's Service which, in the sole judgment of CloudFlare (a) is in violation of any local, state, federal, or foreign law or regulation, (b) is threatening, obscene, indecent, defamatory, or that otherwise could adversely affect any individual, group, or entity (collectively, "Persons"), or (c) violates the rights of any Person, including rights protected by copyright, trade secret, patent, or other intellectual property or similar laws or regulations including, but not limited to, the installation or distribution of "pirated" or other software products that are not appropriately licensed for Your use. You agree that you will NOT knowingly use the Service, among other things, to:
- upload, post, transmit, or otherwise make available any content that is unlawful, harmful, threatening, abusive, harassing, tortious, defamatory, vulgar, obscene, libelous, invasive of another's privacy, hateful, or racially, ethnically, or otherwise objectionable;
- harm minors in any way;
- impersonate any person or entity, including but not limited to a CloudFlare official, forum leader, guide, or host, or falsely state or otherwise misrepresent your affiliation with a person or entity;
- forge headers or otherwise manipulate identifiers in order to disguise the origin of any content transmitted through the Service;
- upload, post, transmit, or otherwise make available any content that You do not have a right to make available under any law or under contractual or fiduciary relationships (such as inside information, proprietary, and confidential information learned or disclosed as part of employment relationships or under nondisclosure agreements);
- upload, post, transmit, or otherwise make available any content that infringes any patent, trademark, trade secret, copyright, or other proprietary rights of any party;
- upload, post, transmit, or otherwise make available any unsolicited or unauthorized advertising, promotional materials, "junk mail," "spam," "chain letters," "pyramid schemes," or the like;
- upload, post, transmit, or otherwise make available any material that contains software viruses or any other computer code, files, or programs designed to interrupt, destroy, or limit the functionality of any computer software or hardware or telecommunications equipment;
- interfere with or disrupt the Service or servers or networks connected to the Service, or disobey any requirements, procedures, policies, or regulations of networks connected to the Service;
- intentionally or unintentionally violate, attempt to violate, or avoid any applicable ICANN regulation or policy;
- intentionally or unintentionally violate any applicable local, state, national or international law, including, but not limited to, regulations promulgated by the U.S. Securities and Exchange Commission, any rules of any national or other securities exchange, including, without limitation, the New York Stock Exchange, the American Stock Exchange, or the NASDAQ, and any regulations having the force of law;
- provide material support or resources (or to conceal or disguise the nature, location, source, or ownership of material support or resources) to any organization(s) designated by the United States government as a foreign terrorist organization pursuant to section 219 of the Immigration and Nationality Act;
- "stalk" or otherwise harass another; or
- promote or provide instructional information about illegal activities, promote physical harm or injury against any group or individual, or promote any act of cruelty to animals. This may include, but is not limited to, providing instructions on how to assemble bombs, grenades, and other weapons, and creating "Crush" sites.
SECTION 14: TERMINATION
CloudFlare's policy is to investigate violations of these Terms of Service and terminate repeat infringers. You agree that CloudFlare may, under certain circumstances and without prior notice, immediately terminate your CloudFlare account, any associated email address, and access to CloudFlare.com and associated Services. Cause for such termination shall include, but not be limited to: (a) breaches or violations of the Terms of Service or other incorporated agreements or guidelines; (b) requests by law enforcement or other government agencies; (c) a request by you (self-initiated account deletions); (d) discontinuance or material modification to the Service (or any part thereof); (e) unexpected technical or security issues or problems; (f) extended periods of inactivity; (g) you have engaged or are reasonably suspected to be engaged in fraudulent or illegal activities; (h) having provided false information as part of your account; (i) having failed to keep your account complete, true, and accurate; (j) any use of the Service deemed at CloudFlare's sole discretion a Prohibited Use as defined above; and/or (k) nonpayment of any fees owed by you in connection with CloudFlare.com and associated Services. Further, you agree that all terminations for cause shall be made in CloudFlare's sole discretion and that CloudFlare shall not be liable to you or any third-party for any termination of your account, access to the Service, or any disruption to your services such a termination may cause. You expressly agree that in the case of a termination for cause you will not have any opportunity to cure. You further acknowledge and agree that notwithstanding any termination, your obligations to CloudFlare set forth in Sections 9, 10, 11, 12 and 13 shall survive such termination.
When asked about Lulzsec's use of their services, Cloudflare CEO Matthew Prince gave a standard response that is now used corporate wide:
"It's interesting to have public enemy number one using our service but it is important to note that we are not the hosting provider; we're much more similar to something like a network provider where traffic is passing through us and we're not actually storing any of the data," Prince says. "Importantly, if we were to kick them off of our network that wouldn't take the content off the Internet it would just be a little bit slower."I asked Cloudflare's abuse response team by email if they have ever enforced their terms of service. They responded with the non sequitur:
We are not a web host and we don't censor content on the internet.
Even if we remove a site from CloudFlare it doesn't remove the content
from the internet in any way, shape, or form.When a complaint comes in we provide the direct IP to the site in question so that the person
with the complaint can take their complaint directly to the web host
of the site -- the only people who can ACTUALLY remove the site and
its content from the internet. We comply with every complaint that we receive.
I replied and reiterated my question, and it was ignored.
Later, The Whir reported from HostingCon that Prince said,
The obvious implication, which escapes Mr. Prince, is that the lulzsecurity.com site would have had a very hard time staying online if they weren't hiding behind CloudFlare.
"… the LulzSec website had 18 million legitimate page views over 23 days. LulzSec had seven different hosts over 23 days, initially in Montreal. He says the other hosts were based in Malaysia, several US-based hosts, and ultimately had a German hosting provider."
Lulz
Met hold online hacking group suspect
London’s Metropolitan Police have arrested a 19-year-old man on suspicion of being a founder and spokesman for a hacking group believed to be responsible for a series of cyberattacks on organisations such as the CIA and News Corporation.
The man used the online nickname Topiary, and “presented himself as a spokesman for the group” called Lulz Security, Scotland Yard said. Scottish authorities participated with the Met’s eCrime unit in making the arrest on Tuesday in the Shetland Islands.
He was being taken to a police station in central London, said the Met.
The arrest is the most significant to date in the investigation of Lulz and a related but larger group called Anonymous. In recent weeks, the Met arrested Ryan Cleary and another teen said by police sources to have used the name Tflow.
Topiary controlled the Twitter account LulzSec, which was the main way the group communicated to the public during a prodigious 50-day hacking spree this year that alarmed law enforcement and national security officials. That account has more than 340,000 followers.
In internal Lulz chats that were later leaked, Topiary wrote that “Tflow/Sabu/myself/kayla started” the group.
Ryan Cleary is the founder of Encyclopediadramatica.ch and Tflow was one of his first administrators. The FBI is still on the hunt for kayla* and Sabu.
*Kayla is now thought to be two British men who were recently arrested in September.
Garrett E. Moore mentioned on ED's IRC channel:
Jul 26 2011 09:53:38 <garrett> ive known kayla waaaaay longer than tflow
I wonder to what extent Garrett's connection is to Lulzsec?
Here is Garrett, using the handle KnownCyberbully on Twitter, chatting with Sabu.
@anonymouSabu Hey dude, missed your PM. Hit me up whenever, glad you aren't dead. <3
Here is Sabu, more recently.
@Le_Researcher You fucking scrub - you got that from Ryan (who is violating his online prohibition) and that IP is a public Proxy. GOOGLE.
about 18 hours ago from web in reply to Le_Researcher
He doesn't mean Ryan Cleary, does he?
Subscribe to:
Posts (Atom)
