What the Sabu revelation means for hackers

Everyone, no matter who they profess to be, is potentially an informant.

To most observers he seemed unpredictable, dangerous and so highly skilled that he could evade the long arm of the law. But in an astonishing revelation, last week it emerged that Sabu, the notorious figurehead of hacking group LulzSec, had for almost nine months been working secretly as an informant for the FBI.

The identity of 28-year-old Hector Xavier Monsegur, who led a rampage against government websites and multi-national corporations, had been uncovered when he failed to mask his computer's IP address using an internet chat room on just one fateful occasion.

Soon after, FBI agents appeared at the door of his apartment on the sixth floor of a 14-story housing project in Manhattan. The agents reportedly played "good cop bad cop", convincing the infamous hacker - almost immediately, according to court documents - that his only way out was to cooperate with an international investigation into his former comrades.

Monsegur, under his Sabu guise, proceeded to continue operating aggressively online - in some cases encouraging fellow hackers to commit crimes - all while under apparent instruction of the FBI.

Some suspected he had been "turned" - but the hacker world is rife with conspiracy theories and there was no hard evidence to prove it. "Sabu was identified, apprehended by the FBI and turned to an informant," one perceptive group wrote in November last year. Yet the claim never gained substantial traction.

From the perspective of the authorities, it was a tactical masterstroke. They had managed to flip the most notorious, the most feared, and the most accomplished of the LulzSec members. Due to his close ties and wide respect among hacker collective Anonymous and other splinter groups such as AntiSec, Sabu was a goldmine to the FBI. With his help, they were able to level charges against five accused hackers based in Britain, Ireland and America.

There are concerns, however, about how far the Bureau went to pursue its goals.

On 19 June, just 12 days after Sabu had been arrested, LulzSec, the group he commanded, issued a public call to arms. "Top priority is to steal and leak any classified government information, including email spools and documentation," it wrote in a manifesto.

Sabu was quick to proudly point out the manifesto to his 30,000 Twitter followers. "The biggest, unified operation amongst hackers in history," he wrote, possibly from an FBI computer. "All factions welcome. We are one."

Two months later, on 17 August, Sabu disappeared offline for 30 days. We now know that just two days prior, on 15 August, he had secretly pleaded guilty to twelve counts of hacking in a closed hearing at Southern District court, between Manhattan Bridge and Broadway, New York. When he returned, though he reportedly helped call off some attacks, he maintained a hostile front, claiming, "I wasn't owned, arrested, hacked or any of the other rumors [sic]."

In December, he encouraged an offensive against companies manufacturing surveillance technology; he called on hackers to target "with impunity" anyone supporting legislation that would restrict internet freedoms; and played what sources close to him say was a central role in hacking intelligence and security thinktank Stratfor. The attack on Stratfor resulted in 75,000 credit card numbers being posted online, with 5.5m of the thinktank's confidential emails subsequently passed to WikiLeaks.

This trend continued almost right up until 6 March, the day he was "outed" in an exclusive published by Fox News. As recently as two weeks ago Sabu had publicly instructed hackers to "infiltrate" international crime organisation Interpol and to "expose" arms companies. "Hack their servers," he tweeted on 28 February. "Scour their user email/passes. Grab mailspoolz. Grab docs... Leak. Rinse. Repeat."

Sabu's activities while working out of FBI offices, and then later his home under 24-hour surveillance, raise significant legal and ethical questions. Most notably: by encouraging people to commit crimes in such a brazen fashion, did he cross the thin line from informant to agent provocateur?

It has been suggested that the attack on Stratfor and the subsequent dealing with WikiLeaks was allowed - perhaps encouraged - by the FBI, not only to strengthen the US government's case against the hackers, but also to assist in the prosecution of WikiLeaks founder Julian Assange. (This does not seem beyond the realms of possibility, particularly given America's well-documented desire to prosecute Assange for his role in publishing US government secrets.)

It could have been the case, of course, that Sabu on occasion went "rogue" while under FBI direction. But given that he was the most notorious hacker in the world and having his every move monitored, it is doubtful the authorities would have let him out of their sight long enough for him to have the opportunity - repeatedly and over a period of several months - to incite others to commit criminal acts. What appears more likely is that the FBI decided, like the hackers, they too could play dirty.

These are issues that will no doubt be addressed In the months ahead, as the FBI's tactics fall under scrutiny in the courts and elsewhere. The impact of the Sabu revelation, meantime, has unsurprisingly reverberated like an atomic bomb within the Anonymous community.

"I feel for the ones who worked with him and who trusted him with leaks/data," one hacker told New Statesman. "They could never have known."

This sentiment is one shared across online chat rooms frequented by Anonymous, where there are varying degrees of anger, paranoia, fear and sadness.

For many, the large void left by Sabu will provide a defining moment of sobering reality. His silent Twitter page, once a ceaseless stream of anti-establishment rage, is now nothing but a ghostly relic - a symbolic reminder that in the shadowy virtual world hackers inhabit, no one is untouchable, and everyone, no matter who they profess to be, is potentially an informant.

Ryan Gallagher is a freelance journalist based in London. His website is here.

Getty
Show Hide image

Air pollution: 5 steps to vanquishing an invisible killer

A new report looks at the economics of air pollution. 

110, 150, 520... These chilling statistics are the number of deaths attributable to particulate air pollution for the cities of Southampton, Nottingham and Birmingham in 2010 respectively. Or how about 40,000 - that is the total number of UK deaths per year that are attributable the combined effects of particulate matter (PM2.5) and Nitrogen Oxides (NOx).

This situation sucks, to say the very least. But while there are no dramatic images to stir up action, these deaths are preventable and we know their cause. Road traffic is the worst culprit. Traffic is responsible for 80 per cent of NOx on high pollution roads, with diesel engines contributing the bulk of the problem.

Now a new report by ResPublica has compiled a list of ways that city councils around the UK can help. The report argues that: “The onus is on cities to create plans that can meet the health and economic challenge within a short time-frame, and identify what they need from national government to do so.”

This is a diplomatic way of saying that current government action on the subject does not go far enough – and that cities must help prod them into gear. That includes poking holes in the government’s proposed plans for new “Clean Air Zones”.

Here are just five of the ways the report suggests letting the light in and the pollution out:

1. Clean up the draft Clean Air Zones framework

Last October, the government set out its draft plans for new Clean Air Zones in the UK’s five most polluted cities, Birmingham, Derby, Leeds, Nottingham and Southampton (excluding London - where other plans are afoot). These zones will charge “polluting” vehicles to enter and can be implemented with varying levels of intensity, with three options that include cars and one that does not.

But the report argues that there is still too much potential for polluters to play dirty with the rules. Car-charging zones must be mandatory for all cities that breach the current EU standards, the report argues (not just the suggested five). Otherwise national operators who own fleets of vehicles could simply relocate outdated buses or taxis to places where they don’t have to pay.  

Different vehicles should fall under the same rules, the report added. Otherwise, taking your car rather than the bus could suddenly seem like the cost-saving option.

2. Vouchers to vouch-safe the project’s success

The government is exploring a scrappage scheme for diesel cars, to help get the worst and oldest polluting vehicles off the road. But as the report points out, blanket scrappage could simply put a whole load of new fossil-fuel cars on the road.

Instead, ResPublica suggests using the revenue from the Clean Air Zone charges, plus hiked vehicle registration fees, to create “Pollution Reduction Vouchers”.

Low-income households with older cars, that would be liable to charging, could then use the vouchers to help secure alternative transport, buy a new and compliant car, or retrofit their existing vehicle with new technology.

3. Extend Vehicle Excise Duty

Vehicle Excise Duty is currently only tiered by how much CO2 pollution a car creates for the first year. After that it becomes a flat rate for all cars under £40,000. The report suggests changing this so that the most polluting vehicles for CO2, NOx and PM2.5 continue to pay higher rates throughout their life span.

For ClientEarth CEO James Thornton, changes to vehicle excise duty are key to moving people onto cleaner modes of transport: “We need a network of clean air zones to keep the most polluting diesel vehicles from the most polluted parts of our towns and cities and incentives such as a targeted scrappage scheme and changes to vehicle excise duty to move people onto cleaner modes of transport.”

4. Repurposed car parks

You would think city bosses would want less cars in the centre of town. But while less cars is good news for oxygen-breathers, it is bad news for city budgets reliant on parking charges. But using car parks to tap into new revenue from property development and joint ventures could help cities reverse this thinking.

5. Prioritise public awareness

Charge zones can be understandably unpopular. In 2008, a referendum in Manchester defeated the idea of congestion charging. So a big effort is needed to raise public awareness of the health crisis our roads have caused. Metro mayors should outline pollution plans in their manifestos, the report suggests. And cities can take advantage of their existing assets. For example in London there are plans to use electronics in the Underground to update travellers on the air pollution levels.

***

Change is already in the air. Southampton has used money from the Local Sustainable Travel Fund to run a successful messaging campaign. And in 2011 Nottingham City Council became the first city to implement a Workplace Parking levy – a scheme which has raised £35.3m to help extend its tram system, upgrade the station and purchase electric buses.

But many more “air necessities” are needed before we can forget about pollution’s worry and its strife.  

 

India Bourke is an environment writer and editorial assistant at the New Statesman.