"We feel bad for our clients," he said. However, those who hacked the firm "don't appear to be posting or calling attention to" the stolen emails.
Girl, he read your mind...
Given the firm's track record of defending soldiers against the U.S. government that Anonymous frequently criticizes, the firm seems like a strange target for the group, he points out.
"If you have a problem with injustice, how about hacking the prosecutors?" Puckett jokes, adding: "We've been trying to laugh so we won't cry about all this."
This is one of the comnments from below the story:
Feb 7, 2012 9:30 AM CST
First of all, there isn’t any equipment that can crack a password with a brute force method method, that; “rapidly tries out all possible combinations” of google email passwords. That type of method was rendered virtually impossible many years ago by the use “captchas”, meaning that after 5-10 incorrect password attempts, the user will be presented with a “test”, such as a distorted word, that they are required to read and retype correctly before proceeding. Automatic computer programs can not read the “captacha”, so if a correct answer is typed, the user is assumed to be human. With each subsequent “guess”, a new captcha is generated, that must be answered correctly, for the very purpose of making it impossible to use an automatic program that “rapidly tries out all possible combinations.”
Second, there is no such thing as a hacking collective named “Anonymous”. The is a name that is just being used by, oh, just about any and every basement dwelling “script kiddie” on the planet, most of who couldn’t hack their way out of a paper bag without being handed a sharp stick and a 20 page tutorial.
Third, if all that was “hacked” (and I use that word loosely) were passwords to email accounts, most likely the perps. used either a password stealer program or just went phishing. Both methods rely primarily on the use of “social engineering”, meaning that they just tricked some dumb sap(s) into opening a “spoofed” email and downloading an infected attachment, or into inputting their username and password into a faked (phished) websitesite.
A company’s security system is only as strong as it’s most gullible employee