Hack Hack Hack Hack It Apart

Hackers ‘Team GhostShell’ Leak 120,000 Records From 100 Major Universities

Team GhostShell implied that this could have been a much larger release.
pwestwind Hackers Team GhostShell Leak 120,000 Records From 100 Major Universities

screengrab

Team GhostShell returned late Monday with Project WestWind: a leak of 120,000 records from 100 major universities around the world.

Team GhostShell is the hacking group behind Project Hellfire, which launched in August this year. Project Hellfire lifted 1 million accounts from 100 websites around the world, compromising data from the CIA and from Wall Street.

The hacked data leaked in Project WestWind does indeed appear to come from a who’s who of major learning institutions. They include Harvard, Cambridge, Princeton, Tokyo University, Cornell and New York University.

In their Pastebin announcement, Team GhostShell said Project WestWind was a serious effort to jump-start a dialogue on the state of higher education today. Apparently this hack wasn’t pranksterism for the lulz, but hacktivism for the greater good:

We wanted to bring to your attention different examples from Europe, how the laws change so often that even the teachers have a hard time adjusting to them, let alone, the students, to the US, where tuition fees have spiked up so much that by the time you finish any sort of degree, you will be in more debt than you can handle and with no certainty that you will get a job, to Asia, where strict & limited teachings still persist and never seem to catch up with the times and most of the time fail to prep you up for a world where foreign affairs are crucial in this day and age.

The hackers ask that others use the information as a conversation starter, team member DeadMellox writing:

You don’t have to talk about it with us, what’s important is that you bring up the subject ‘today’s education’ in day-to-day conversations with your family, friends, people close to you and try to understand the system better, together. How it works, how a certain type of diploma can or cannot help you in your road to the career you want to pursue.

Though Team GhostShell’s data dump contains user screen names and mostly hashed passwords (Betabeat examined one file in which some of the passwords were apparently cracked), they claim they’ve kept the leaked records to a minimum.

Team GhostShell issued a warning to the targeted institutions regarding the states of their networks: “When we got there, we found out that a lot of them have malware injected. No surprise there since some have credit card information stored.”

Betabeat has reached out to a web network administrator at one of the hacked universities for comment and will update this post if we receive a response.

Follow Steve Huff via RSS. shuff@observer.com