Portuguese hackers strike back at Moody's downgrade

Sub prime dishonour


Portuguese hackers responded to a negative assessment of the country's ability to repay loans by defacing the website of credit reference agency Moody's.

The defacement restores the rating of the debt-crippled nation to the highest (A++) mark, while simultaneously attacking Moody's website security and business practices.

One message posted by the hackers on the site read: "Here at Moody's we are paid to say what our $ friends want. We are powerful. We sell some hunches and everyone believes them. It's the mood of the day.

"Yet, we have trivial security vulnerabilities on our website."

The defacement, which features an image of Afonso Henriques, the first Portuguese king, concludes with the message. "Afonso ranked your website as Z--. His sword will be shoved up your ass."

The defacement, removed from view at the time of writing, was captured by Reg reader Marcia and can be viewed in all its glory here.

Local reports of the hack can be found here.

The defacement comes a day after Moody's downgraded Portugal's sovereign-debt rating to junk status, a development criticised by local government officials and (less forcefully) by executives from the European Central Bank, the Wall Street Journal reports. Share prices of banks in Spain and Portugal slipped on news of the downgrade, which makes it more difficult for firms to secure loans at favourable interest rates. ®

Similar topics

Narrower topics


Other stories you might like

  • Stolen-data market RaidForums taken down in domain seizure
    Suspected admin who went by 'Omnipotent' awaits UK decision on extradition to US

    After at least six years of peddling pilfered personal information, the infamous stolen-data market RaidForums has been shut down following the arrest of suspected founder and admin Diogo Santos Coelho in the UK earlier this year.

    Coelho, 21, who allegedly used the mistaken moniker "Omnipotent" among others, according to the US indictment unsealed on Monday in the Eastern District of Virginia, is currently awaiting the outcome of UK legal proceedings to extradite him to the United States.

    The six-count US indictment [PDF] charges Coelho with conspiracy, access device fraud, and aggravated identity theft following from his alleged activities as the chief administrator of RaidForums, an online market for compromised or stolen databases containing personal and financial information.

    Continue reading
  • Hackers weigh in on programming languages of choice
    Small, self-described sample, sure. But results show shifts over time

    Never mind what enterprise programmers are trained to do, a self-defined set of hackers has its own programming language zeitgeist, one that apparently changes with the wind, at least according to the relatively small set surveyed.

    Members of Europe's Chaos Computer Club, which calls itself "Europe's largest association of hackers" were part of a pool for German researchers to poll. The goal of the study was to discover what tools and languages hackers prefer, a mission that sparked some unexpected results.

    The researchers were interested in understanding what languages self-described hackers use, and also asked about OS and IDE choice, whether or not an individual considered their choice important for hacking and how much experience they had as a programmer and hacker.

    Continue reading
  • Devil-may-care Lapsus$ gang is not the aspirational brand infosec needs
    Hitting big targets, untouchable, technically proficient. Who will it inspire next?

    Analysis The Lapsus$ cyber-crime gang, believed to be based in Brazil, until recently was best known for attacks on that country's Ministry of Health and Portuguese media outlets SIC Noticias and Expresso.

    However, the gang is climbing up the ladder, swinging at larger targets in the tech industry. Over the past few weeks, those have included Nvidia, Samsung, and Argentine online marketplace operator Mercado Libre. Now, Lapsus$ is suspected of attacking game developer Ubisoft.

    Lapsus$ in February compromised Nvidia, stealing a terabyte of data that included proprietary information and employee credentials, and dumping some of the data online. The crew also demanded the GPU giant remove limits on crypto-coin mining from its graphics cards, and open-source its drivers.

    Continue reading

Biting the hand that feeds IT © 1998–2022