Wikileaks DDoS Attacker Arrested, Equipment Seized

kaptink writes "The self proclaimed hacker that waged a DDoS attack on Wikileaks has been arrested and has had all his equipment seized. What is interesting is that local police conducted the raid and not a federal authority such as the FBI. The Jester (th3j35t3r) who has a reputation for attacking websites he disagrees with is said to be trying to raise $10,000 in expected lawyers fees. If anyone is going to be alight in the whole Wikileaks debacle, its going to be the lawyers. Personally I think anyone who spells their nick with numbers in an effort to look 'leet' deserves to have their computer confiscated."

Summary Fail

[intellitech]

Try as I might, I see ZERO MENTION of the jester being arrested in the linked article. Here's the real article, pulled from the original submission:

http://www.thinq.co.uk/2010/12/1/wikileaks-hacker-raided-cops/ [thinq.co.uk]

Interestingly enough, thinq.co.uk seems to be one of only a few, if more than one, reporting on the subject. A few quick google searches turned up nothing regarding his arrest..

Re:Summary Fail

[Anonymous Coward]

Not only that, but other sites reporting on the subject are already retracting:

UPDATES: Reports of the raid and confiscation of equipment are most likely a hoax or an elaborate social engineering scheme to capitalize on current news events.

Details are still few, and sympathizers should exercise caution before donating funds allegedly for "attorney fees". The original text requesting donations, as quoted below, and the corresponding link have been deleted from the "new" site.

https://www.infosecisland.com/blogview/9916-Hacker-The-Jester-Reports-Raid-By-Law-Enforcement.html [infosecisland.com]

Re:

[Kagura]

Here's the guy's [twitter.com] twitter. He claims he's not arrested.

Weird story...

Re:Summary Fail

[Dayofswords]

further update from his twitter:
( http://twitter.com/th3j35t3r [twitter.com] )

# the real Jester thanks all with common sense and the ability to research, while at the same time never begging for money. (EVER). OUT. about 3 hours ago via web

# The raid story = fabricated by the imposter (@th3j3st3r - www.th3j35t3r.net) to facilitate him capitalizing on the name, or to draw me out. about 3 hours ago via web

# really wanted to TANGO DOWN - www.th3j35t3r.net IMPOSTER - today but I appear to have bigger stuff to deal with. Shit happens. about 3 hours ago via web

# requires no cash. I will not have blood of a money-grabbin opportunist (@th3j35tsr) on my hands. Consider urself dusted. (thankyou). about 3 hours ago via web

# PS FOR the record I have not been lifted, and do not require any finances or donations - dont be sucked in by @th3j3st3r imposter.OUT about 4 hours ago via web

# th3j35t3r For sake IMPOSTER (@th3j3st3r (www.th3j35t3r.net)) I plead you to STFU and vanish.'He knows not what he does.' Heed me now. about 4 hours ago via web

Re:

[electron sponge]

I sense a hoax.

Re:

[intellitech]

I think the lack of official executive branch announcement of the arrest is further evidence of this.

Re:

[NiceGeek]

Why would the executive branch comment on the arrest of a bush-league hacker?

Re:Summary Fail

[Monkeedude1212]

Someone on here earlier was saying that the Jester doesn't have the smarts or the technology to pull off something like the DDoS thats been happening to Wikileaks - and if that's true I wouldn't be surprised if this is just some fabricated story to pump up Jester's "cred" as a "leet hacker".

Re:

[blair1q]

He is, however, dumb enough to use Twitter to brag about his sploits, which makes locating and arresting him about as hard for a cop as scratching his own nuts.

Re:Summary Fail

[blind monkey 3]

which makes locating and arresting him about as hard for a cop as scratching his own nuts.
Hey, you try scratching your nuts when you have a donut in one hand and a coffee in the other... you get some strange looks if you start scratching against furniture.

Re:

[vldragon]

Thats a rookie mistake. You're overthinking the problem. Insert donut in mouth, scratch nuts with FREE hand. Do NOT attemp to drink coffee during this procedure or scratch nuts with coffee hand. Officer Johnson made that mistake once... Once.

Re:Summary Fail

[AndrewNeo]

Not if he was behind SEVEN PROXIES.

Re:Summary Fail

[ilikejam]

"He has to make it past a belly bloated by years of coffee and donuts."

Careful - these are IT types your talking to.

Re:Summary Fail

[ilikejam]

s/your/you\'re/

Re:

[fph il quozientatore]

A Vi command in the body and an Emacs one in the signature? That's a good way to make enemies on both sides.

Re:Summary Fail

[ilikejam]

[ilikejam@localhost ~]$ vi .emacs

Re:

[mlyle]

Yes. For instance, under California law:

Any person who willfully threatens to commit a crime which
will result in death or great bodily injury to another person, with
the specific intent that the statement, made verbally, in writing, or
by means of an electronic communication device, is to be taken as a
threat, even if there is no intent of actually carrying it out,
which, on its face and under the circumstances in which it is made,
is so unequivocal, unconditional, immediate, and specific as to
convey to the per

Re:Summary Fail

[NiceGeek]

"Someone on here earlier was saying that the Jester doesn't have the smarts or the technology to pull off something like the DDoS "

and if someone says something on Slashdot, it must be true!

Re:Summary Fail

[MichaelSmith]

I may not have the smarts to do that either but I posted a link to my own server on slashdot and it stopped working.

Re:

[Zero__Kelvin]

Glad I could help.

Re:Summary Fail

[NiceGeek]

The nice thing about conspiracies is that they can be blamed for everything.

Re:

[idontgno]

The nice thing about conspiracies is that they can be blamed for everything.

For instance, it's pretty damn near self-evident that the conspiracy would post something just like that. Deflect attention from itself by drawing attention to itself, self-mockingly.

In other words, THAT'S JUST WHAT THEY WANT YOU TO THINK!

Re:

[Monkeedude1212]

Then why stop him now?

Re:Summary Fail

[Celestialwolf]

Try as I might, I see ZERO MENTION of the jester being arrested in the linked article. Here's the real article, pulled from the original submission:

http://www.thinq.co.uk/2010/12/1/wikileaks-hacker-raided-cops/ [thinq.co.uk]

Interestingly enough, thinq.co.uk seems to be one of only a few, if more than one, reporting on the subject. A few quick google searches turned up nothing regarding his arrest..

Reply posted on the link you provided above: "UPDATES: Reports of the raid and confiscation of equipment are most likely a hoax or an elaborate social engineering scheme to capitalize on current news events: https://www.infosecisland.com/blogview/9916-Hacker-The-Jester-Reports-Raid-By-Law-Enforcement.html [infosecisland.com] "

Re:Sh

[Anonymous Coward]

SLASHDOT shame on you... in your rush to try to "scoop" everyone else you posted what is more than likely a hoax storey.

Be careful everyone before you help to "donate" $10,000 to his attorney fees. This is more than likely a scam. There is no confirmation from ANY reputable site, news or otherwise, that police actually kicked his door in today and confiscated anything.

Of course Slashdot won't post this comment because ...

1) It's a little critical of them and...

2) It's from "anonymouse"

No surprises

[betterunixthanunix]

I won't say which, but that guy (or at least someone using that handle) would occasionally drop into an IRC channel that I frequent, trying to recruit us. When news of the leak first broke, I wondered if he was going to try to DOS wikileaks (something he had spoken about doing in the past), and then, there was a DDOS. Now he's been arrested for it, and I cannot say that I am surprised.

Now I just have to wonder if he'll receive a pardon of some kind.

Re:

[newcastlejon]

Now I just have to wonder if he'll receive a pardon of some kind.

Or a job.

Trying to raise money

[kyrio]

I truly hope no one is dumb enough to give him money.

Re:

[js3]

why?

Re:

[Monkeedude1212]

Only someone dumb enough to give him money would ask a question like that.

Re:

[Terrasque]

Now, it would be a shame if someone took some stolen credit cards and sent him a lot of money... Right? Truly bad indeed.

Helping Law Enforcement

[Sponge Bath]

So he committed a crime and tweeted about it. Stupid, but helpful for law enforcement. Durrrr....

Re:

[The Archon V2.0]

So he committed a crime and tweeted about it. Stupid, but helpful for law enforcement. Durrrr....

The Internet has made stupid drunken or braggy confessions to one's pals even easier for cops to overhear. No longer does a cop or an informant have to be in physical proximity to the moron! Oddly exactly what it was made for: Easier communication!

Re:

[Nadaka]

script? nope, he he made a gui in vb4 with a button on it that launches a script made by someone else. Like all the other 1337 h4x0rs.

Honestly, who didn't see that coming?

[Winchestershire]

I honestly don't care one way or the other regarding the Wikileaks mess, but common sense tells you that if you do something illegal (like DDoS'ing) and then brag about it that you will likely get caught.

Re:

[Starteck81]

I honestly don't care one way or the other regarding the Wikileaks mess, but common sense tells you that if you do something illegal (like DDoS'ing) and then brag about it that you will likely get caught.

Maybe he thought the CIA would thank him and give him a job. ;-)

th3j35t3r - Lame.

[Teckla]

A nick name like "th3j35t3r" is so unbelievably lame.

It clearly should be "7h3j3573r".

Re:

[HTH NE1]

He wanted 7h3j3573r, but someone else had already claimed it, so he had to substitute ts for his 7s.

(Not realizing 73hj3573r was available.)

Re:

[SEWilco]

How about "0x544845204a4554000000"?

Re:

[Sleepy]

He says it as "th3j35t3r" because he is a Lisp programmer...

Re:th3j35t3r - Lame.

[melikamp]

"7h3j3573r" is still super-lame compared to "73|-|_|3$73®"

Point

[Voulnet]

"Personally I think anyone who spells their nick with numbers in an effort to look 'leet' deserves to have their computer confiscated"

This.

I'm surprised.

[grub]

I honestly thought it was government(s) behind the DDoS.

Re:

[Mindcontrolled]

Ah well, the beauty of modern times is, you do not have to take immediate action as a government in cases like this - especially if the internet is involved. Most likely some moron somewhere will take it on himself to act as your sockpuppet - intentional or not. Then you wipe your hands clean, arrest the poor fool and play the part of the righteously indignated while secretly laughing all the time.

Re:

[wjousts]

You give up too quickly. Based on the furor with which some people where insisting it must be the government yesterday, I'm fully expecting to see people arguing that "The Joker" is a patsy taking the fall to distract attention from the government and their elite squad of script kiddies.

Re:I'm surprised.

[Scrameustache]

I honestly thought it was government(s) behind the DDoS.

Well, he was motivated by "patriotism" fueled by the FUD spread by government(s)... is it them doing it if they influence people without giving direct instructions? Philosoraptor knows...

Re:

[davev2.0]

You thought that because you are a dumbass.

Re:

[budgenator]

Personally I didn't think it was a DDOS, but a slashdotting from diplomats trying to find out what everybody else really thinks about them.

Re:I'm surprised.

[grub]

Happy World AIDS Day to you, too!

lol.

On a related note

[Amorymeltzer]

The Wikileaks twitter account [twitter.com] is reporting/complaining that Amazon booted them from using their servers. Others [guardian.co.uk] are saying [readwriteweb.com] it was due to pressure from the US.

Re:

[electron sponge]

Amazon does a fair bit of business in the United States, what with it being an American corporation and all. I'm surprised Wikileaks lasted a day before getting the boot. Kudos to Amazon for knowing where their bread is buttered.

Re:On a related note

[Amouth]

Kudos to Amazon for knowing where their bread is buttered.

NO.. no kudos for them - now if they where presented with a court order to shut it down then by all means.

but this is a violation of due process if not, and as far as i'm concerned places Amazon out of what could be reasonably considered a common carrier on their EC2 platform..

which means they should be liable as assisting any illegal activity that happens on their EC2 platform.

Re:On a related note

[nametaken]

No doubt this somehow fell under ToS violations. Not so much a perversion of justice.

Re:

[Amouth]

well like app ToS's they all have the line "this can be changed at any time without notice and your bound to it" with lines like that i really don't know why they bother with the rest of the document.. just put

ToS: You will do what we say, when we say, how we say, and pay us for it.

Re:

[hedwards]

It takes basically no integrity, ethics or courage to lick boot when somebody with a lot of clout asks you to. Kudos should be reserved for people and organizations that demonstrate some integrity, even if they ended up folding later.

Re:

[Anonymous Coward]

Amazon license agreement says they can boot you if they determine that hosting you is a security concern. I am not saying there aren't more nefarious reasons, but its quite possible they were just getting sick of getting DDOSed. (Section #3.4.1)

http://aws.amazon.com/agreement/#3

Re:On a related note

[L3370]

From the article from readwriteweb--
"Senator Lieberman issued a statement saying that Amazon.com has informed his staff that the company has ceased hosting Wikileaks."

First off...go figure Joe Lieberman has anything to do with this. Second, why must Amazon.com report to Joe Lieberman and his staff for any reason? I'm not the type to boycott services for politcal views, but I'm willing to boycott Amazon for associating with such a toolbag.

Re:

[Nethead]

He's an attention whore, they get all the babes.

really??

[NetNed]

He choose this to wage a DDoS on? I can think of hundreds of sites better suited for this. How about taking down some known terrorists sites? Maybe the RIAA or MPAA?

Re:really??

[betterunixthanunix]

He did run DDOS attacks on websites that were sympathetic to terrorists. Basically, this guy is a hard-line far-right hacktivist, and I cannot say that I am surprised that he was behind the wikileaks attack.

He broke the law...

[FatSean]

...to stop others from breaking the law.

He is a man of genius.

Re:

[davev2.0]

I see, so it is OK to DDoS the websites of groups you personally do not like, but it is wrong for him to DDoS the websites of groups he does not like but you do like. That is what is known as hypocrisy.

First, we set fire to all the lawyers

[steveha]

If anyone is going to be alight in the whole Wikileaks debacle, its going to be the lawyers.

That's sort of an incendiary comment. You're playing with fire, here; you don't want to flame lawyers, they might get hot under the collar.

steveha

Re:

[Nadaka]

Well, its a good start.

Leetness and the individual...

[The Pirou]

I fail to see how being an 'individual' and acquiring a moniker for one's self that 'might' not have been used to any gainful notoriety by someone else prior to this point justifies having their computer confiscated.

Alphanumeric's are practically forced down our throat at every turn, whether it's in new capture images, password requirements on a banking site or when registering with any of the other myriad companies you might be required to have a login for these days. Is it so strange for that to translate into a name that transcends the King's English?

Fast response time...

[Omniscientist]

It only took two days since the attack occurred for the perpetrator to be tracked down and arrested? I can't say I've ever heard of such a fast response time to a computer crime. I'm quite surprised.

Is this typical these days?

Re:

[SEWilco]

It only took two days since the attack occurred for the perpetrator to be tracked down and arrested? I can't say I've ever heard of such a fast response time to a computer crime. I'm quite surprised.

Is this typical these days?

I don't know. Let's see if Wikileaks has reports on the typical computer crime response.

Re:Fast response time...

[grcumb]

It only took two days since the attack occurred for the perpetrator to be tracked down and arrested? I can't say I've ever heard of such a fast response time to a computer crime. I'm quite surprised.

Is this typical these days?

Nah, not hardly. Let me demonstrate.

I'll just fire up my handy-dandy scrypto-rama botnet infestor... there... and point it at Amazon... like that. And - hang on, there's someone at the doo%$^&%&*+++NO CARRIER

Real vigilantes do not

[losttoy]

1. Attack Amazon's infrastructure from their home computer
2. Post about it on twitter
3. Make videos of the attack and blog
4. Try to recruit sidekicks
5. Brag about it on IRC and the interwebs

You do any or all of the above, and you are not a vigilante or a cracker. You are just another idiot you got his/her paws on a computer.

Re:

[rcamans]

not idiot, mentally challenged. like anyone posting or written about on /.
oh, wait a minute....

S(r3w u!

[turing_m]

1 \/\/4$ 4B4|\|D0|\|3D 4$ 4 (|-|1LD 4|\|D r41$3D b'/ |-|4>0r3r$, j00Z 1|\|$3|\|$171\/3 (L0D!

Re:

[PRMan]

Sadly, I could read that...

Re:

[Colonel Korn]

1 \/\/4$ 4B4|\|D0|\|3D 4$ 4 (|-|1LD 4|\|D r41$3D b'/ |-|4>0r3r$, j00Z 1|\|$3|\|$171\/3 (L0D!

Please, please, please mod this up.

Re:S(r3w u!

[Rich0]

You left off the required #!/usr/bin/perl at the start.

Like I said

[MonsterTrimble]

This guy is an idiot. Wikileak's owner is on the Interpol's most wanted list and half the U.S. calling for your head. The issue is so hot right now, doing anything remotely involved with the Wikileak site - good or bad - is going to get your ass hunted by SOMEBODY.

Numbers in your handle?

[seyyah]

I think someone who uses the letter "k" instead of the letter "c" in their nickname to look kool deserves to have their komputer konfiscated. I'm looking at you kaptink.

Re:Numbers in your handle?

[kaptink]

Its not a substitute. But then you dont know where my nick is from so I wont call you a twat. Just off-topic :)

This just in

[countSudoku()]

The initial list of equipment seized is as follows:
1 Kaypro 386
1 box of 1.4MB floppy disks
1 VBS Scripting for Dummies
1 box of Star Wars Kleenex
1 bag of Peanut M&Ms
1 high-back executive desk chair with two missing casters
1 copy of Penthouse Forum from April 1986
1 Wal*Mart computer desk
4 Star Wars Attack of the Clones action figures
1 spring-loaded Star Wars Light Saber (Mace Windu model)

Please post more items when they become known/available through the press.
Thank you.

Insurance file?

[dysfunct]

That "th3j35t3" guy appears to be a major idiot, admitting [twitter.com] to various DDoS attacks and being very public [wordpress.com] about his actions and convictions.

He's even gone so far as to develop his own pretty DoS tool [infosecisland.com] with green fonts on black background with twitter integration that exploits uber-secret knowledge, like opening many connections that slowly feed http headers to apache, thereby using up all available children.

What will be interesting, though, is his own encrypted insurance file [wordpress.com], that supposedly contains various information about the people behind wikileaks, although - like the wikileaks insurance file - you can't really prove it contains anything but random garbage. I rather choose to believe that the guy is a bored, stupid teen who read too many articles about the fantasy anarcho-hacking world of the 90s...

Bad Summary

[h4rr4r]

Some of us made up our usernames when we were children, think of the children!

Actual setup of Wikileaks?

[identity0]

I may be a bit late to this discussion, but I was wondering if anyone could fill me in on the technical side of Wikileaks, instead of the politics.

- Why is it called Wikileaks when it's not a wiki?
- How do they ensure confidentiality of leaker's identities?
- I know they have a group of volunteers working around the world, how do they communicate securely?
- How hard would it be for the US/Other .gov to compromise wikileaks, and ferret out the informers/insert wrong data/track down Julian?

Re:Computer expert?

[Yvan256]

Watch it with the comments about having numbers in your nick, dude. We're both on very thin ice here.

Re:Computer expert?

[clone52431]

Well, I’m not doing it to appear leet.

I’m actually doing it in a small sort of protest to the fact that it’s virtually impossible to get a descriptive username (on AIM, originally) without having a number tacked on the end. So I made the username as non-descriptive as possible and made the number extra big.

But I somewhat doubt anyone cares.

Re:Computer expert?

[ArhcAngel]

Let me allay any doubts.

Besides all you need to get a name without numbers is be good at mispelling things.

Re:

[Binestar]

lrn2bbornsooner. It's your own fault it took you this long to join the Internet. Now get off my lawn y0un6k1d154 before I get my belt out! I have a 5 digit UID and a 6 digit ICQ number, and 3 AIM names without any numbers in them!

Re:

[blair1q]

It's not the format, it's the effort.

My nick was auto-generated by a failover in an account-request form (mumble) years ago, so there's no effort involved here. Not that any is needed.

Re:

[jonbryce]

That happens if it was modded "under-rated"

If someone mods it "Troll", and 4 people mod it "under-rated", you could end up with "Score: 5, Troll")

Re:

[nschubach]

If you look at his mod though, it's marked funny and has +1 karma (for 3 points with my preferences) and it does not show "Funny"

Re:

[MichaelSmith]

Thats even better than "-1, Insightful"

Re:

[Fluffeh]

That's weird... my last two comments have been modded but I only see the score (Score: 3) instead of the score+mod (Score: 3, Funny).

When someone uses the "underrated" mod, it simply pushes it up a notch without changing the previous tag. On the other hand, you can be modded "overrated" which will simply push your point down without touching the tag attached.

There have been some rather funny cases where a mod has been +5 Troll and similar mods. Well, at least they give me a giggle :)

Re:

[nschubach]

That's fine and all, but it should show (Score:3 Funny) on his because there IS a funny mod. It's not simply an Underrated mod.

Why not +5 troll ?

[formfeed]

Once in a while there are posts that are so exceptional good textbook cases of trolldom, that you feel they trump everything any other troll could ever write. For these cases there should be a +1 troll. Maybe not as part of the regular rating, but as an exception mod one could give once a year.

Also, for these rare posts -that should be made visible for everyone- I'd like to see:
+1 perfect strawman
+1 this is what's wrong with humanity
+1 clinically insane
+1 so dumb, I almost rated it funny

Re:

[eln]

Seems to be something funky going on with Slashdot's mod system today. I had mod points earlier today and when I moderated comments, it would increment the total score, but wouldn't show the moderation I gave it, even though it had always done so in the past. Probably the Slashdot admins running test code on the production server again.

Re:

[Lilith's Heart-shape]

I ate a box of Ex-Lax, but I can't bring myself to give a shit.

Re:

[cheekyjohnson]

If they found out who he was in the first place, apparently he wasn't very good either.

But... didn't you see all of those numbers in his name!? Didn't you see all of that reckless gloating!? Clearly he is a master of computers (though he's not nearly as good as Komen Bryce)!

Re:

[Monkeedude1212]

m0nk33dud3 concurs.

Re:4n0nym0u5

[h4rm0ny]

Hey, "Harmony" was taken, you know? Numbers are an easy way of getting past duplicate names. WIth well over a million users signed up to Slashdot, the chances of anyone at this stage getting their desired username are slim. At least with a few digits here and there you can be roughly consistent with your username on other sites.



Plus it makes me sound cool, of course!

Re:4n0nym0u5

[baegucb]

I never had that problem. It's pronounced phonetically "John" btw ;)

Re:

[Machtyn]

Boy, I'm glad I didn't originally make my handle mach10 back in the BBS days.

Re:4n0nym0u5

[by (1706743)]

I guess this makes my nick even more lame (first level of lameness in that I didn't even get the right UID).