Donor Data Stolen During Conservative Website Hacking
Yesterday we reported that someone had hacked into the Conservative.ca website and posted a false press release about Prime Minister Stephen Harper’s health. Today, it has become apparent that the hacking was more significant than initially thought.
On twitter, an anonymous person called @LulzRaft has taken credit for the hacking. “Lulz” refers to funny Internet content. The initial tweet from LulzRaft on this issue yesterday morning said: “@lulzsec Any bets on how long until anyone notices my ‘special article.’”
It appears as though that “special article,” i.e. the false press release, was only a small part of the hacking that took place. LulzRaft claims to have hacked into a database of people who made financial donations to the Conservative Party. A Conservative Party spokesperson told the CBC that the hacking was limited to the public website and that there was no breach of the database containing personal information about members of the party.
LulzRaft, however, briefly shared a sample of the stolen data which, according to CBC, “contained more than 5,600 entries, with some names repeated with different e-mail addresses.” In an e-mail, LulzRaft confirmed that they made that list public as proof, but that they have no intention of releasing the rest of the data.
Late yesterday, LulzRaft promised to make headlines two days in a row. Today, they claimed responsibility for hacking the MyHusky.ca website and posting a message about it being “Conservative Appreciation Day.” The message promised Canadian conservatives free gas at the pumps.
In an e-mail, LulzRaft wrote: “We hacked the website purely for the lulz, but the biproduct of bringing media attention to online security is a positive as well.” They are not done yet either. LulzRaft wrote in the e-mail: “We are definitely planning on more lulz in the future, although we can’t name any specific targets.”
Image credit: Screen capture of @LulzRaft tweet