B******r.org has been hacked!

[Guardian]

A hacker who goes by the nic "Nightstalker" has hacked b****r.org and posted chat logs, admin dB, ip's, etc.

This is just beyond kewl!

Note: There is some profanity, as in "F@#k these guys, man" but I've left the links active to help the google rating, if that's ok with the mods?

This is some really great raw data!

http://pastebin.com/UAKsF6xj

Full Database
========================================
http://depositfiles.com/files/i94qxmbu1


Chat Logs
========================================
http://depositfiles.com/files/g9shu2k3c

 

[seek10]

Re: B**lo***s.org has been hacked!

Is it legal to download the data in US ?

 

[Renaissance]

Re: B**lo**r.org has been hacked!

Just so others know, _B**lo**r.org is a pedophile network. I didn't know that and tried going to the site to see what it was. Fortunately it didn't load so I looked it up on google. Perhaps it should have made sense, but it didn't click.

 

[Sirius]

Re: ******.org has been hacked!

OMG! How did you discover?

I tried to obtain some information regarding this site through Google but there is hardly anything. This thread appears at the top of the search results.
The site in question is also mentioned in some hacker forums which are unavailable right now. Why one might wonder?

What's the domain exactly? “******.org” (with s) or “******.org”? There are more information to the latter. It's also mentioned in the log file at pastebin. But you posted it with s. There seem to exist both versions, i.e. domains. Which website are we talking about?

 

[Renaissance]

Re: *******.org has been hacked!

When I put it in google I saw 'site for those who love boys' - on double checking it looks like that description wasn't specifically for the site in this thread, but it was enough looking around when I saw that.

 

[lake_george]

Re: B**l*******s.org has been hacked!

If you go to a website for pedophilia, how will you explain why, if you ever need to? If you are not in some official role trying to police this then you are leaving yourself open for serious problems.

 

[Gimpy]

Re: B**o****s.org has been hacked!

A hacker who goes by the nic "Nightstalker" has hacked ******.org and posted chat logs, admin dB, ip's, etc.

This is just beyond kewl!

Can you tell me why its cool? Is it for law enforcement reasons?

I'm asking that because I don't see a way to approach the data without being branded 'aiding and abetting' the sickos who run that place? This IS a knee jerk reaction on my part, but its also a question to ask: how do people investigate this kind of thing without being accused or arrested for it?

 

[SoCurious]

Re: ********.org has been hacked!

: how do people investigate this kind of thing without being accused or arrested for it?

The worst thing is that even if the authorities believe you it may be that you're in more trouble because they're protecting those involved. The only thing I can think of is to declare a "Crusade Against Pedophilia" and sign up formally on such a group. Investigators signed up should have more standing in law than those acting solo.

 

[Guardian]

Re: B**l***r.org has been hacked!

First off, sorry for the typo, it's ***r.org" that got hacked. I got all excited and added an "s"

As far as I know, there are no laws prohibiting downloading the information from a public site, that was allegedly hacked, since there is no personal info like credit card numbers, social security numbers etc. All we've really got at this point are nics, chats and IP's...but those chat logs and IP's are GOLD.

While it's true that the PTB often protect the baby rapers, not all do, especially county Sheriffs in the US. Sometimes I think the Sheriffs are our last line of defense...they''re our neighbors, elected locally, and they do act on information like this.

The next step is to try and identify the posters from their nics, IP's and the personal info they have given in their chats. While the original information may have been obtained illegally, it was then posted to a PUBLIC site, so it is fair game as long as there's no confidential financial data (credit card numbers, bank account log ins, etc.) included.

I happen to have a knack for identifying people who try to be anonymous on the net, I have programs that can recognize writing patterns, some nifty search scripts, etc. I've made screen shots of everything, and if/when I can identify any of the baby rapers involved, either I, or one of the other people I'm working with on this, will take the data directly to local law enforcement in the perp's region.

As someone already mentioned, you do NOT want to visit any of the pedophile sites unless you are part of a group that already has a relationship with law enforcement in this area of investigation. There are very specific rules you have to follow if you're going to do this type of work, like you can't download any porn yourself...and the site operators know this so this is how noobs are often tested. It's a very complicated process and takes a LOT of training.

This hack, however, is something entirely different. Anyone can download the logs and work on identifying the perps.

If nothing else comes out of this, the baby rapers will know that their "ultra secure" server isn't. "Nightstalker" has just put a great big hole in their ability to "groom" young boys. "******.org" is down, and that alone is a huge victory.

I have no idea who "Nightstalker" is, but if I did, I would hug him/her until s/he was short of breath.

 

[Guardian]

Re: B**lo***s.org has been hacked!

Is it legal to download the data in US ?

In this case I believe it is. If there was confidential financial data (like credit card numbers) it would be questionable, but there's not. There's chat and admin logs, which are fair game once they've been posted publicly.

 

[Guardian]

Re: B**lo***s.org has been hacked!

Can you tell me why its cool? Is it for law enforcement reasons?

Oh yeah, and even if we can't get them prosecuted legally, publicly exposing them in their own communities is almost as good.

Of course they're all in hiding, and shaking in their shoes at this point, but with a years worth of chat logs at our finger tips, at least a few of these sicko's are going to be identified.

 

[Guardian]

Re: B**lov**s.org has been hacked!

What's the domain exactly? (with s) or “bg”? There are more information to the latter. It's also mentioned in the log file at pastebin. But you posted it with s. There seem to exist both versions, i.e. domains. Which website are we talking about?

"b**lo**r.org" I made a mistake and added the "s" SORRY..and thanks for catching that!

 

[anart]

Re: B**lo**r.org has been hacked!

In case it isn't obvious, it's really not smart to go to the site - that was not what Guardian was suggesting when she posted the site name on the forum. For that reason, I've adjusted the site name to not be identifiable just to protect those people (who would type it into their browser without thinking) from themselves.

 

[Renaissance]

Re: B**lo**r.org has been hacked!

In case it isn't obvious, it's really not smart to go to the site - that was not what Guardian was suggesting when she posted the site name on the forum. For that reason, I've adjusted the site name to not be identifiable just to protect those people (who would type it into their browser without thinking) from themselves.

I admit I opening the site without thinking - it just didn't register what it could have been. I don't think web addresses themselves are always a great indication of what a particular site is about - perhaps it should have been obvious in this case, but to me it wasn't. I often open deactivated links here on the forum just to see what they are about. I think it would have been good to have a notice about what the site is in the original post, particularly given the nature of the site.

 

[Guardian]

Re: B**lo**r.org has been hacked!

In case it isn't obvious, it's really not smart to go to the site - that was not what Guardian was suggesting when she posted the site name on the forum. For that reason, I've adjusted the site name to not be identifiable just to protect those people (who would type it into their browser without thinking) from themselves.

Got'cha...my bad. I never even occurred to me that someone wouldn't know what I was talking about. "B******r.org" has actually been taken down, the server pulled, no IP assigned, etc., so no one can get to it, but I did give the wrong URL, and "b*******s.org" still has an IP routed, although the site is not up.

To me, it really is frustrating. An incredibly wonderful thing has happened. A huge, bulletproof, extremely well hardened, tool of psychopathy has just been wiped from the face of the Internet, and its owners left trembling in fear... and hardly anyone even understands what I'm talking about.

I do the happy dance alone ;D