The Jester (hacktivist) explained

The Jester
th3j35t3r
Nationality:American
Known For:Hacking anti-American, jihadist, and homophobic websites
Occupation:Grey hat hacktivist

The Jester (also known by the leetspeak handle th3j3st3r[1]) is a self-identified grey hat hacktivist. He claims to be responsible for attacks on WikiLeaks and Islamist websites.[2] He claims to be acting out of American patriotism.[3]

Identity

The Jester has stated that he was a former soldier and had served in Afghanistan and elsewhere. A former defense operative claimed that The Jester was a former military contractor involved in US Special Operations Command projects.

Activities

On January 1, 2010, The Jester began a campaign against Jihadist websites. His first target was alemarah.info, which was the Taliban's website at the time.[4] [5] The Jester posted several tweets claiming to be responsible for the downtime WikiLeaks was experiencing.

On November 29, 2010, someone claiming to be The Jester stated that he had been raided by the U.S. and attempted to solicit money for legal fees. The Jester purported that the person was an impostor, though writers at InfoSecIsland believe the hoax was created by The Jester himself.[6] [7]

In February 2011, The Jester claimed credit for a DoS attack on several sites belonging to the Westboro Baptist Church for celebrating the death of homosexual U.S. servicemen.[8]

In June 2011 The Jester vowed to find and expose members of LulzSec.[9] He attempted to obtain and publish personally identifiable information of key members within group, whom he described as "childish".[10] In March 2011, Barrett Brown said The Jester was trying to identify members of Anonymous with Backtrace Security, a group of former members of Anonymous who disagreed with the current Anonymous.[11] [12] [13] On June 24, 2011, he incorrectly claimed to have revealed the identity of LulzSec leader Sabu as an information technology consultant possibly from New York City.[14] In July of the same year, he falsely accused a Portuguese IT professional of also being Sabu, leaving The Jester's outing claims to be considered suspect.[15] However, in a post on his blog in November 2011, The Jester retracted his prior identifications for "Sabu", issued an apology and correctly identified "Sabu" as Hector Xavier Monsegur, 28, of New York.[16] Sabu's identity was confirmed on March 6, 2012, when Monsegur was arrested by the FBI and it was revealed that he had been acting as an FBI informant in the interim.[17] [18]

On March 5, 2012, The Jester changed his Twitter account avatar from his signature Jester icon to a QR code without comment or explanation.[19] Scanning a QR code redirects a browser to a website. Scanning The Jester's icon led to a URL where he had an image of his signature Jester icon and an embedded, hidden code that allegedly exploited a vulnerability that affects Safari, Chrome and Android browsers. "When anyone scanned the original QR code using an iPhone or Android device, their device would silently make a TCP shell connection back to my remote server," The Jester wrote.[20] This was however exposed to be fake[21] and the exploit was stolen from a 2-year-old CVE advisory.[22]

On May 14, 2012, The Jester's Twitter account appeared to have been deleted, along with all posts on his WordPress blog.[23] However, the Twitter account and WordPress blog were merely temporarily deactivated and were subsequently restored May 16, 2012.[24]

On July 2, 2013, the Jester took responsibility for a series of DoS cyberattacks against the Ecuadorean stock exchange and the country's tourism website, and promised to attack any other governments considering granting asylum to NSA leaker Edward Snowden. In tweets, the Jester also alluded to a plan to seize control of the fire alarms at the Ecuadorean embassy in London, which would force WikiLeaks founder Julian Assange to set foot on UK soil and face potential extradition to Sweden to face sexual assault charges.[25]

On October 21, 2016, the Jester took responsibility for "defacing" the official website of the Russian Ministry of Foreign Affairs. The "hack" was later shown to be fake.[26]

Notes and References

  1. News: WikiLeaks moves to Amazon servers after DOS attacks . Gregg . Keizer . Computerworld New Zealand . 2010-11-30 . 2010-12-29.
  2. News: Julian Assange Becomes US's Public Enemy No. 1 . Marcel . Rosenbach . Holger . Stark . . 2010-12-07 . 2011-12-02.
  3. News: WikiLeaks Struggles to Stay Online After Attacks . Ashlee . Vance . Ashlee Vance . . 2010-12-03 . 2010-12-29.
  4. th3j35t3r . Florian Flade . Hacker macht Jagd auf Online-Dschihadisten . 2010-06-30 . . 2010-12-29.
  5. News: Afghan Taliban deny meeting U.N. envoy . Reuters . 2010-01-30 . 2011-01-03.
  6. Web site: Did WikiLeaks Hacker The Jester Pull Police Raid Hoax? . Infosecisland.com . 2010-12-02 . 2011-08-30.
  7. Web site: Sullivan . Bob . Red Tape - WikiLeaks hacker a villain or a hero? . https://web.archive.org/web/20110502092656/http://redtape.msnbc.msn.com/_news/2010/12/07/6345517-wikileaks-hacker-a-villain-or-a-hero . dead . 2011-05-02 . . 2010-12-07 . 2011-08-30.
  8. Web site: Leyden . John . Jester claims credit for knocking Westboro Baptist Church offline . 2022-11-14 . www.theregister.com . en.
  9. News: Poeter . Damon . Will LulzSec's Hit on Arizona Cops be its Last Hurrah? . 25 June 2011 . . 24 June 2011 . . https://web.archive.org/web/20131228010732/http://www.pcmag.com/article2/0,2817,2387566,00.asp . live . 28 December 2013.
  10. News: Halliday . Josh . LulzSec: the members and the enemies . 25 June 2011 . . 24 June 2011 . . https://web.archive.org/web/20110626112935/http://www.guardian.co.uk/technology/2011/jun/24/lulzsec-members-and-enemies . 26 June 2011 . live . London.
  11. Web site: Splinter Group Says Document Outs Anonymous Members . 2022-12-19 . threatpost.com . en.
  12. Web site: Greenberg . Andy . Ex-Anonymous Hackers Plan To Out Group's Members . 2022-12-19 . Forbes . en.
  13. Web site: Greenberg . Andy . Anonymous And Ex-Anonymous Hackers Wage A War Of Identification . 2022-12-19 . Forbes . en.
  14. News: Chapman . Stephen . LulzSec's leader, Sabu, revealed? . 25 June 2011 . . 24 June 2011 . . https://web.archive.org/web/20110627050312/http://www.zdnet.com/blog/security/lulzsecs-leader-sabu-revealed/8905 . dead . 27 June 2011.
  15. Web site: The Quest to Unmask the Ringleader of Anonymous - Technology . The Atlantic Wire . 2011-07-14 . 2011-08-30.
  16. News: Wagenseil . Paul . Despite Being Anonymous, Hacktivist Sabu Wasn't Hard to Find . 13 March 2012 . . 8 March 2012.
  17. News: 5 'Anonymous' hackers busted after one becomes FBI informant . Newsday . March 6, 2012 . AP.
  18. News: Goldman . David . Anonymous in disarray after major crackdown snares leaders . CNN . March 6, 2012.
  19. News: Wagenseil . Paul . March 13, 2012 . Anti-Anonymous hacker threatens to expose them . MSNBC . https://web.archive.org/web/20151210214002/http://www.nbcnews.com/id/46716942/. dead. December 10, 2015.
  20. News: Wagenseil . Paul . March 12, 2012 . Pro-American Hacker's Attack Threatens to Expose Anonymous . Security News Daily .
  21. News: March 13, 2012 . th3j35t3r and QR Exploits Exposed Part 2 . Wordpress .
  22. Web site: Cve - Cve-2010-1807 .
  23. Web site: "Patriotic hacktivist" The Jester unmasked—or maybe it's a big troll . Ars Technica . May 15, 2012.
  24. Web site: Not totally sure what just happened, but damn it's getting out of hand now . th3j35t3r . 16 May 2012 . 2012-05-28.
  25. https://www.motherjones.com/politics/2013/07/hacker-jester-targets-assange-snowden-ecuador Snowden and Assange Targeted by Mysterious Hacker "The Jester"
  26. Web site: How the Jester fooled Russians—and Fox News—with one simple trick. [Updated]. 25 October 2016.