Who is sabu hacker

He also claimed to use The Onion Router Tor network. The Tor network consists of thousands of relay nodes all across the Internet, randomly relaying connections from clients through the Tor network and back out again. This list is closely monitored and is included in most threat intelligence. Many organizations disallow traffic from Tor exit nodes unless they have a good reason and there are few to allow it. But, back to Sabu. According to one story, Sabu forgot to activate his Tor link a single time, 4 and logged into a server using his real IP address.

Because he was the most-wanted cybercriminal at the time, his servers were almost certainly being watched by law enforcement. According to the story, the authorities traced his real IP address, and Sabu was quickly and quietly detained. He was born in New York city, but raised in Puerto Rico. The Puerto Rican island of Viecques, which was once used by the United States Navy for live fire training exercises, was one of his first interests as a hacktivist in Perhaps growing up near a bombing range was enough to inspire Monsegur to a life of Internet hacktivism.

Or perhaps he just did it for the Lulz, after all. Monsegur had been implicated in, or bragged about, dozens of illegal, high-profile hacks, not to mention multiple DDoS attacks. Facing a sentence of 25 to years in prison, he struck a deal in which he agreed to turn over his friends from LulzSec to the authorities.

A few days later, the anonymouSabu Twitter account appeared to cease publication with this dramatic tweet:. For the next six months, Monsegur cooperated with law enforcement authorities, providing intel on ongoing operations, stopping hundreds of cyber attacks, including three national security targets. Law enforcement also got zero-day research and exploits, and Monsegur detailed his attack methodology and strategies.

Within the year, authorities had apprehended the members of LulzSec. Many are now serving long jail sentences and owe hundreds of thousands of dollars in restitution to the organizations they once brazenly penetrated. Some in Anonymous felt that Monsegur had betrayed his compatriots in LulzSec, though he denies pointing the finger.

He has had little comment about it since. Monsegur himself was freed on May 27, after time served. The younger Sabu railed against cyber security federal contractors, who he perceived as little more than highly paid snake oil salesmen.

The job marks his turn to full-time cybersecurity work after a much higher profile career as the brash de facto leader of a hacktivist team breaching targets almost dailyincluding Sony, PBS, and Newscorp, as well as security firms like HBGary and Mantech. When he was caught, he followed that rampage with a stint as an FBI informant, helping the agency to prevent some of the same kinds of cyberattacks he'd helped orchestrate, and then spent seven months in prison after taking a plea deal.

Now his new white-hat hacking position is putting to the test whether companies will allow one of the world's most notorious hackers, reformed or not, to attack their networksand whether the cybersecurity industry will accept as one of its own someone who not so long ago was eviscerating security firms like the one that now employs him. The person sitting in front of you today is all about business, taking care of his family, paying bills.

So far, companies have been surprisingly eager to have Monsegur test their security, according to Monsegur's new boss and Rhino founder, Ben Caudill. Only one client has balked at the notion of an ex-black hat probing their servers for hackable flaws, asking Rhino to exclude Monsegur from the penetration test. Otherwise, Caudill says clients see Monsegur's involvement as a kind of extra assurance that Rhino's security audits are legitimatethat he's helping them to patch the sort of security vulnerabilities real black hat hackers would use.

His name has been in headlines. Caudill says Monsegur has already performed dozens of client penetration tests and successfully compromised the target network in every case. On one job, for instance, Monsegur hacked a major retailer's page for uploading timesheets by embedding malicious XML code into an Excel spreadsheet.

In another attack on a financial company, Monsegur dug up old credentials that had been posted online. I tried to remember who else had been there, but no one came to mind. If the Jester really did take the picture then, clearly, he was not in it himself, but who was he?

Did I blithely walk past him on my way out of the pool? Continue reading Part 2 here! Searchable archive of all Sabu Tweets. The information you provide will be treated in accordance with the F5 Privacy Notice. Welcome back! Need to change your email or add a new one? Click here.

David Holmes is a researcher and evangelist for F5 Networks, with emphasis on cryptography, distributed denial of service attacks, and the Internet of Things. Holmes writes regularly about vulnerabilities, technical solutions and the security industry for SecurityWeek.

So, we get to work. We obsess over effective attack methods. We monitor the growth of IoT and its evolving threats. We dive deep into the latest crypto-mining campaigns.

We analyze banking Trojan targets. We dissect exploits. We hunt for the latest malware. And then our team of experts share it all with you. For more than 20 years, F5 has been leading the app delivery space.

With our experience, we are passionate about educating the security community-providing the intel you need to stay informed so your apps can stay safe.

Search Submit. Top Risks.