LulzSec members sent to prison for infamous DDoS attacks

"I regret 95% of the things I've ever typed on the internet."

Four members of the infamous and largely British LulzSec hacking group that carried a string of high-profile DDoS attacks in 2011 have been handed relatively lenient prison terms of up to 32 months by the judge at Southwark Crown Court.

The bare facts are that Ryan Cleary, 21, and Ryan Ackroyd, 26, were given prison terms of 32 and 30 months respectively, while Jake Davis ('Topiary'), 20, will spend 24 months in a young offender's institution; Mustafa Al-Bassam, 18, was handed a 20 month suspended sentence.

All will be watched by the authorities for up to five years after their eventual release.

Although these sentences count as relatively severe by UK standards for hacking offences they are probably mild compared to the terms that might have been handed out in the US where collaborator and former LulzSec leader Hector Xavier Monsegur ('Sabu') has so far won sentencing delays only after turning police informer.

Information supplied by Monsegur was instrumental in the arrests of the four UK men on different dates in 2011, which caused LulzSec's sudden and spectacular destruction.

Despite their self-assured public statements, police evidence revealed them to be a less imposing in the flesh.

Cleary managed the botnet used in DDoS attacks while Ackroyd chose the targets for attack and carried them out, hence their more severe sentences. Al-Bassam's role was to supply information on possible vulnerabilities while Davis operated as a sort of witty, sarcastic PR man, running the public Twitter account that announced their latest successes using the callsign "tango down."

Police claim the attacks caused £20 million ($32 million) of damage, including reputational harm, to the clutch of organisations they honed in on, including the website of the UK Serious Organised Crime Agency (SOCA) itself.

It gets darker. On 20 June 2011, police raided Cleary's home address where they found him in the middle of the SOCA DDoS attack; they also said that forensic analysis found child porn images on his PC.

"Theirs was an unusual campaign in that it was more about promoting their own criminal behaviour than any form of personal financial profit," said the Police Central e-crime Unit head Charlie McMurdie.

"In essence, they were the worst sort of vandal - acting without care of cost or harm to those they affected," she added.

"They claimed to be doing it for 'a laugh' but real people were affected by their actions. Today's convictions should serve as a deterrent to others who use the internet to commit cyber-attacks."

The inside track on LulzSec has always been something of a mystery beyond the few details made public during their trials.

However, in a new BBC interview, Jake Davis - Topiary - has now offered some fascinating insights that will probably surprise nobody.

""It [the Topiary character] was an exaggerated version of the things I couldn't be," he said. "He was a lot more confident that I am certainly."

"It [the Internet] is a very limited world. It's a world devoid of empathy."

Join the CSO newsletter!

Error: Please check your email address.

Tags Personal TechsecurityLulzsec

More about BBC Worldwide Australasia

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by John E Dunn

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts