Krypt3ia

(Greek: κρυπτεία / krupteía, from κρυπτός / kruptós, “hidden, secret things”)

Archive for July 13th, 2011

AQ’s New Digital Shingle: Al-Fidaa

leave a comment »

AQ’s New Propaganda Board:

Al-Fidaa, the newest site in the Al Qaeda webring to spread the usual propaganda. This site popped up last week and I am just getting round to checking it out fully. The site is undoubtedly a response to the takedown of Al-Shamukh a couple weeks back and this is their answer, to make even more redundant sites to pump out their agenda.

The difference so far with this site is that security wise (at first sniff) it has been upgraded. Google has been spidering the site, but even when you attempt to look at the content in the cache, you get nothing but the login page. This is a decidedly large change from their past sites that leaked data. A further examination of the site structure and back end servers will tell if there is more to work with on fidaa.

Domain Data:

Another major change is that these site domains have been set up as privacy protected. This is a newer thing to most of these sites and the domains were set up in May of this year, probably in case they needed them, like the Al-Shamikh1 site that popped up so quickly after the original domain was capped by Godaddy and allegedly “BlackKatSec”

I would love to see the government go to these domain registries and locate how, who, and where the funds were transferred to create these sites. I am willing to bet that they were set up using cutout companies or individuals, but, maybe they will get lucky and get a line on a real person or two to ask some questions concerning ownership and connection to AQ.

Server Locations:

While the site is registered in the US, the actual servers are all located in Malaysia. So, once again we see that Malaysia seems to be a hub where the Internet Jihad is concerned. I have to wonder just how well our government gets along with the Malay government. Could we in fact get some digital forensics love on those boxes out there? One also wonders just how many Malay jihadi’s there are out there and how many of them may in fact work for networks like Piradius. I ask this because many a server has been stealthed onto boxes run in those networks and I think from the looks of them, that they are being managed locally, not just hacked.

The Nature of AQ Sites:

Overall, it seems that this site is just another mirror like all the rest out there. They will have secret little rooms to chat amongst themselves, but the real Jihad goes on elsewhere. Primarily these sites are for the distribution of propaganda and to recruit the lone wolves in the West. I expect that it will just be the same thing with a different color scheme really… But, it will be something to watch.

If I find something tasty I’ll let you know.

K.

Written by Krypt3ia

2011/07/13 at 20:23

Faux Security: @JosephKBlack, @ElyssaD, BlackBerg Security, and Shades of Project Viglio

with 4 comments

Blackberg & ElyssaD:

A while back, I ran across ElyssaD and her whack ass site which was scraping my content from Infosecisland. I later read  Jaded Security’s post filling in the gaps that I had given up on in my searches on her digital rats warren of sites and chalked it up to fucktards at play. However, since then, she has failed to remove my content from her sites, her ersatz ’employer’ Joe Black, has called me out as a supporter of Anonymous and LulzSec, and still, my content is on her frantically moronic sites.

So, the gloves come off.

I began to look around at her sites again to see what was being taken and scraped when I  began to not only see more of her erratic behaviour, but a pattern of baiting for attention not only on her part, but that of Joe Black. So much so in fact, that I have to really wonder if Elyssa is not just an identity scrape of a real person as opposed to actually being online herself and posting all this claptrap. After all, what was it that Ligatt and Aaron Barr were trying to do but create many sock puppet identities to control and use to sway opinion in PSYOPS fashion. So the questions for me now are these;

  • Is Joe Black just an insanely inept buffoon with some alleged connections to the defence base?
  • Is ElyssaD just a cutout for Joe to weave his insane batshit online for.. Well whatever purposes he has in mind?
  • Is all of this just the personal lulz machine for whoever Joe may really be and is having a laugh?
  • Are they both just batshit insane and useless wankers?

After picking through their digital trails, I still cannot say for sure what their goal is or just how real they both are. I am told that Joe is a real person and that some in my circles know of him. Personally, I had never heard of him until he started tweeting craziness on Twitter and came up with his craptastic site. Over time though, he just progressively got crazier and crazier with comments and challenges to the likes of LulzSec, who then allegedly hacked him and showed just how poor his site security was.

Of course now there are allegations that Lulz did nothing that that he (Joe) had hacked/defaced his page himself to garner attention (as seen below)

After his site went down this last weekend, we all thought perhaps he had been hit by another Anon attack of some sort, but then he popped up again yesterday, claiming fantastically, that he is the new Nietzsche of information security! Which is ironic, because Nietzsche went insane at the end of his life due to Tertiary Syphilis, which I think Joe has a head start on now. Then again, if you really know who Nietzsche was, and did, perhaps this is another nod to irony and a play on the ideas of putting crazy out to the world to see what happens.

Frankly though, from his tweets and writings, I think it is the former and not the latter. Joe is just an attention seeking whore and Elyssa, well, if Elyssa is truly the one posting on the Internet, hon, you need some mental health dollars spent on you STAT!

So, on to the  Ligatt worthy asshattery shall we? I will present it in short montages, somewhat like the montage scene in Team America. Mostly because I am listening to the soundtrack now and YOU are, well, you are a farce just like the film.

Joe.. Joe Black… CIA…:

Seriously Joe.. If YOU are a NOC, then I am the king of Prussia. What the Hell are you saying? I mean, this right here just screams that you are either out of your head or just a clown. If you are at all serious about this alleged business of yours and its ties to the military and government, then they, if they are indeed connected with you at all, should quickly pull out.

Then there’s this little ditty:

Holy WTF? Really? C’mon man! Who is going to buy this shit other than Elyssa? (to the tune of Freedom Ain’t Free.. It costs a BUCK OH FIVE!)

And then there is this other missive:

Huh? Wha? Elyssa, take your God DAMNED MEDS! With employees like this, Joe is gonna have to have one HELL of a insurance plan! Elyssa, I am sure the Feds took you up on your offer and will give you FULL immunity *snort* (to the tune of North Korean Melody.. So Ronery)

AND then there is my favorite!

SO! That’s how it works within the intelligence and hacking communities! I had NO IDEA! Really, Elyssa, if indeed you are real and this tweet wasn’t just some elaborate insane joke. YOU are not a hacker and it does not happen by “association” you morons. No more so than any of your degree’s (if real) make you an INTEL analyst or a Black OP specialist. (to the tune of Team America March.. just because it came on.. Can you smell the gravitas?)

Speaking of gravitas, if indeed Joe and Co. are real, that is what they are trying, and failing to convey to the would be clients that the site alleges to want. Therein, you have Ligatt-ed quite well Joey.

Board of Advisors:

Now, in another more interesting vein, Joe has added a board of directors to his site. Of course I had to look once Praetorian had pointed it out asking; “Who the hell are these people?” So, I put on the waders and got the gloves on to go looking. What I found kinda makes me wonder what the hell is going on yet again. So, lets have a look at these people shall we?

Fernando Patzan:

Alright, so Fernando was pretty easy to find. I mean how many Fernando’s are there in infosec who have government ties? Yeah, so Fernando, my first question is this; “Do you really represent in any way Joe Black and his particular brand of crazy?” Because if you don’t then this guy is dragging your reputation down with his easy use of your name as an advisor. Honestly, if half the shit that Joe has done and said was on your advice, well, I should think that your current employers might want to re-think your job status.

Of course I have yet to speak with anyone who really knows you.. So you too could be another cutout. However, I have found ancillary data through Google that you do really exist and you did work at GD. So, tell me my man, are you huffing the same glue from the same paper bag under that local underpass with Joe?

Oh, and if you don’t know him.. Well dude, you better get on the horn with your lawyer…

Patricia Ellington:

Oh Patty, Patty, Patty, your creds are kinda.. Well ‘meh’ aren’t they? You also have connections to me like Fernando now that the LinkedIn is working right. So, why have I never heard of you? Well, I suppose that that is a bad question. So I will go back to the credibility issue and your connection to Joey here. Do you know Joe? Is Joe taking YOUR advice too in posting his whack ass diatribes about being in the CIA and allegedly outing Team Poison?

You too might want to call your lawyer…

John Berry:

John… Well.. John is a blank slate to me. Of course his name is pretty common and bland, but I could locate no one with that name within the infosec community nor by using the sooper special word “CYBER” that all of the morons are using as a catch phrase today.

So he is a ghost.. OOOOH maybe he is a super spy like Jason Bourne! I bet Joe knows you through his adventures in Thailand chasing heroin smugglers!

Not.

Justin Johnson:

Justin.. Well Justin was a bit of a puzzle. The only one who came up with network cred was this one. Are you an advisor to Joey? Once again, I say you should get a lawyer if you don’t already have one because this guy may be trading on your good name and credibility (VERY Ligattworthy!) Justin, if you do in fact know Joey and you are working with him let me know.. I have more questions like; HUH? Why?

Kevin G. Coleman:

Lastly, and most interestingly, we have Kevin. Oh Kevin, I liminally have heard of you before and I cannot believe that you would have anything to do with Joey, but, then again, maybe you like the glue huff now and again? Do you really advise Joe to do the crazy shit he has been up to? Do you really approve of, or even know about this Elyssa character?

Dude, you are the most credible of the group and now you have this stink upon you!

If you know him and are working with him, best sever those ties now sir… EVEN if you are SEMI retired! This Joey character is only going to lead you down the path to smelling like a dog after a skunk attack while standing in the poop factory while it exploded due to a SCADA hack.

Please.. Someone tell these people their names are on this fool’s site!

Ugh…

Ok, so in the end, as “I’m So Ronery” plays on the headphones I end this psychic barf of a post. Joe, Elyssa, …. Time for your meds! And as always “Remember to fade away in a montage”

K.

Written by Krypt3ia

2011/07/13 at 16:12