Linux/Open Source

Anonymous Denies Authoring Linux OS

Anonymous Denies Authoring Linux OS
March 15, 2012 1:11PM

Bookmark and Share
Graham Cluley, senior technology consultant at security firm Sophos, said more than 20,000 users may have already downloaded the Anonymous OS. He wondered "why would anyone want to put their trust in a piece of unknown software, written by unknown people, promoted on an Anonymous Tumblr Web page that you don't know is safe?"

Neustar, Inc. (NYSE: NSR) is a trusted, neutral provider of real-time information and analysis to the Internet, telecommunications, information services, financial services, retail, media and advertising sectors. Neustar applies its advanced, secure technologies in location, identification, and evaluation to help its customers promote and protect their businesses. More information is available at www.neustar.biz.

There's a new open-source Linux-based operating system that is branded with the name of the most famous "hacktivist" group, Anonymous. But members of that group are saying that they did not create it, and that the OS is packaged with Trojans.

The 1.5 GB, Ubuntu-derived OS is called Anonymous OS Live, and it's available via Source Forge in a 32-bit version that is supposed to include various hacker tools, including such Denial of Service apps as Slowloris and HOIC. Source Forge is often used as a repository for software code. The download also contains the security app Wireshark, a BitTorrent client, and the Firefox Web browser.

'Educational Purposes'

The alleged authors of the OS included a statement that it was "created for educational purposes," for checking the security of Web pages.

The purported makers also warn users that "if you attack to any Web page, might end up in jail because is a crime in most countries!" Such a warning against attacking a Web site is not characteristic of Anonymous communications, especially since it contains awkward syntax and a smiley-face emoticon.

A key difficulty in assessing the actions of an anonymous group of independent programmers, of course, is knowing who is actually Anonymous and who is not. One source of information, which is considered by many to be reliably from the organization, is the @Anonops account on Twitter, from which have emanated numerous, apparently authentic Anonymous communications in the past.

Tweets from that account have warned against downloading the OS, calling it "fake" and contending that it is "wrapped" in Trojan malware.

Some observers have suggested the OS was generated by a lone individual who used the Ubuntu Live CD Creator app.

Plot for a Cyber-Thriller?

In another sign that the OS creators might be deceptive, they have also included statements on their "anonymous-os" Tumblr micro-blog page that "in our world, in Linux and open source world, there is not virus," which is inaccurate -- not to mention that the language is not typical of the polished communiqués from the PR-conscious Anonymous.

Graham Cluley, senior technology consultant at security firm Sophos, wrote on his company's blog on Thursday that more than 20,000 users may have already downloaded the OS. He wondered "why would anyone want to put their trust in a piece of unknown software, written by unknown people, promoted on an Anonymous Tumblr Web page that you don't know is safe or not?"

In fact, he suggested, such an OS download could be the centerpiece of a cyber-thriller, where, in order to obtain information on the hacktivist network, an OS purporting to be from the mysterious network was made available -- but, in reality, it reported back information on its users. Cluley recalled that, earlier in 2012, a Slowloris Denial of Service tool had been made available to hackers on Anonymous -- and it was infected with Trojans.

While Anonymous may not officially claim this OS, the group has been accused of using its own brand of trickery as one of its tactics. For instance, earlier this year security experts reported that the group was tricking users into becoming part of a Denial of Service attack against U.S. government and entertainment industry Web sites, via Javascript embedded into special Web pages built to redirect visitors to targeted Web sites.

That attack was conducted by the group as retailiation for a government raid on the New Zealand-based Megaupload site for violating intellectual property piracy laws.

Tell Us What You Think
Comment:

Name:

Aaron:

Posted: 2012-03-18 @ 1:39pm PT
I have a feeling that os does not even hold a candle compared to backtrack.



 Linux/Open Source
1. New OpenStack Release Available
2. Another Day, Another IoT Consortium
3. Microsoft Preps for Internet of Things
4. CoreOS Intros Managed Linux Service
5. Facebook Unveils Networking Switch




 Most Popular Articles
1. IBM Earmarks $3B for Next-Gen Cloud Computing Chips
2. Microsoft Targets CRM in Government Cloud
3. Amazon Unveils Zocalo for Cloud-Based Collaboration
4. Google CEO: Is the 40-Hour Workweek Really Necessary?
5. IBM Rolling Out Hybrid Cloud Services Based on SoftLayer


Have an informed opinion on this story?
Send a Letter to the Editor.
We want to know what you think.
Send us your Feedback.

 Related Topics  Latest News & Special Reports

  Can One Size Windows OS Fit All?
  BlackBerry BES 10 Now Hosted
  Social Media Haters Speak Up
  Internet of Things Comes to DIYers
  Dropbox for Business Boosts Security

 Technology Marketplace
Big Data
Unlock your enterprise data's potential. Learn how in the research report.
Are you getting everything you can out of your business data?
 
Business Intelligence
Get real-time, cloud-based information services with Neustar.
 
CIO Issues
Secure and retain skilled technology professionals. Learn how.
 
Cloud Computing
Are you getting everything you can out of your business data?
 
Data Storage
Unlock your enterprise data's potential. Learn how in the research report.
 
Enterprise Hardware
Protect your network with APC Smart-UPS battery backup
Cisco UCS Invicta Series flash memory systems
 
Enterprise I.T.
Register for an upcoming ISACA® certification exam today
Secure and retain skilled technology professionals. Learn how.
 
Enterprise Software
Unlock your enterprise data's potential. Learn how in the research report.
 
Hardware
Protect your network with APC Smart-UPS battery backup
Cisco UCS Invicta Series flash memory systems
 
Network Security
Protect your network with APC Smart-UPS battery backup