Updated: 4:39 AM 27/02/2013
Tonight a hacker using the handle @Phr0zenM has announced a leak of data from the Official Australian ABC website.
The announcement came on twitter about 1.50 am AEST and the attack is said to be on a subdomain of the main official site www.abc.net.au but its unknown exactly which domain this is.
— Phr0zenMyst (@Phr0zenM) February 26, 2013
The hackers twitter account appears to be about as old as the first tweet and original posting on pastebin suggesting this profile was created for the leak and attack has been carried out in the name of #OpWilders for the this video on the abc website which the hacker says allows Dutch politician Geert wilders to spread hatred. The leaked data has been posted to anonpaste.me in 10 parts with a main index of them links posted to pastebin.
Australia’s ABC http://abc.net.au subdomain hacked for giving Geert Wilders a platform to voice anti-Islam anti-Muslim hatred. #OpWilders
The information in the leak is personal credentials such as emails, names, genders, site positions, user passwords, ips, post codes, address, location and other information. A lot of the emails appear to be Australian related and in total 49,561 with about 5,000 credentials with emails being located in each part (exact number below).
All the passwords are encrypted but the other information relates to exact locations so this in turn is fairly critical that each user is alert to the situation asap and that ABC get to fixing the problem at hand.
The video which has a transcript below starts of with “Geert Wilders is the Dutch anti-immigration and anti-Islam MP. He’s the founder of the right wing Party For Freedom” which gives a really good insight to why this attack has been done as we have seen this trend in the past where media sites will be attacked due to posting news that some one does not agree with.
At time of publishing the @Phr0zenM hacker still had not answered my DM request to a few questions i had so we will just wait and see where that goes.
As it always goes contact is made shortly after.
Anyways, the subdomain will not be disclosed at this current time with hints it may be disclosed later.
Below is Exact credentials with emails found by part id: