International Journal of Inactivism (now supplanted by Decoding SwiftHack)

2009/11/22

What we know about the CRU attacker

Filed under: Climatic Research Unit crack,Kevin Grandia — stepanovich @ 09:34

[cite as: F. Bi. 2009. What we know about the CRU attacker. Intl. J. Inact., 2:99]

Kevin Grandia issues a challenge:

Who stole all this private data from [the Climatic Research Unit of] the University [of East Anglia] in the first place?

[…] Terry Hurlbut at the Examiner has a time line of the stolen data going public which is a good start. I am sure one of our intrepid readers will get to the bottom of this. Tell you what. I’ll race you.

Well, right now what we know is that the attacker

  • is familiar with climate conspiracy theories;
  • knows about how to upload a huge file to an incoming/ folder on a Russian server, tomcity.ru; and
  • initially tried to get the information uploaded to realclimate.org.

Clearly not your usual “i r 31337 h4x0r u haz b33n pwn3d!!!!!!”, but other than that, there’s not a lot to go on in this case (at least for us). Perhaps the only useful lead is the initial attempt to upload to RealClimate; I’ve asked the RC folks if they can furnish any further details on it.

Update 2009-11-22: I forgot to mention one other thing we know:

  • TrueSceptic reports over at Greenfyre’s blog that the e-mails in the .zip archive all have a modification time of 1 Jan 2009 00:00. Why the attacker felt compelled to doctor the file modification times is anyone’s guess.
Advertisements

3 Comments »

  1. (Cam MacKay: no content-free trolling.)

    Comment by frankbi — 2009/11/23 @ 13:00 | Reply

  2. […] on the attacker who stole and uploaded private e-mails from the Climatic Research Unit (CRU) of UEA: Gavin at RealClimate has answered my query about the attacker’s initial attempt to upload the […]

    Pingback by What we know about the CRU attacker, part deux « International Journal of Inactivism — 2009/11/23 @ 13:54 | Reply

  3. […] Update 2009-11-22: Kevin Grandia issues a challenge to “get to the bottom of this”. And, some things we know initially about the attacker. […]

    Pingback by And the Russian server hosting e-mails cracked from the Climatic Research Unit was…? « International Journal of Inactivism — 2009/11/28 @ 20:47 | Reply


RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

%d bloggers like this: