Become a fan of Slashdot on Facebook

 



Forgot your password?
typodupeerror
×
Security The Internet News

HBGary Federal CEO Aaron Barr Steps Down 212

Gunkerty Jeb writes "Embattled CEO Aaron Barr says he is stepping down from his post at HBGary Federal to allow the company to move on after members of the online mischief making group Anonymous hacked into HBGary Federal's computer network and published tens of thousands of company e-mail messages on the Internet. In an interview with Threatpost, Barr said that he is stepping down to allow himself and the company he ran to move on in the wake of the high profile hack."
This discussion has been archived. No new comments can be posted.

HBGary Federal CEO Aaron Barr Steps Down

Comments Filter:
  • owned (Score:4, Funny)

    by Anonymous Coward on Monday February 28, 2011 @04:49PM (#35341740)

    This will go down in history as an awesome example of the firepower of the fully armed and operational battlestation.

    • Emperor Palpatine: "I felt a great disturbance in the dark side, my apprentice, as if millions of voices suddenly cried out in joy and were suddenly heard by those in power. I fear something terrible has happened."

    • Re:owned (Score:5, Insightful)

      by spun ( 1352 ) <loverevolutionar ... Nom minus author> on Monday February 28, 2011 @05:42PM (#35342304) Journal

      Fully armed and operational, except for the bit that actually aims the weapons. Anonymous might demolish a genuine bad guy, or they might destroy the life of some innocent teenager. Being what it is, Anonymous has only a small chance of evolving into real hacktivism and away from it's "for the lulz" roots. That makes it even more dangerous than most vengeful vigilante groups. I mean, "That teenage girl is a camwhore!" is as much of a motivating battle-cry to Anonymous as "That guy is subverting the law to attack wikileaks." Needless to say, I'm happy this creep got his comeuppance. But I would much rather his downfall were accomplished through the rule of law and not vigilante justice. Still, when real justice is hopelessly corrupt, what else is there?

      • This has very little to do with vigilante justice. Anonymous demonstrated how embarrassingly incompetent HBGary is at what it claims to be its area of expertise. The management of any company that is exposed to be so incompetent deserves to be shamed and fired. Not to mention that Aaron Burr was misusing his position to pursue a personal obsession that had nothing to do with the company's goals. That "vigilante justice" has anything to do with it is completely circumstantial and only marginally related to A

        • Re:owned (Score:5, Interesting)

          by spun ( 1352 ) <loverevolutionar ... Nom minus author> on Monday February 28, 2011 @06:39PM (#35342818) Journal

          How is this not vigilante justice? Anonymous went outside the law to punish someone they see as an evildoer. That is pretty much the definition of vigilante justice.

          • He wasn't punished, he was shamed, (there's a difference), and he quit of his own volition. That's not vigilante justice.

            • Quit of his own volition?

              Call me cynical, but yeah... right, sure he did.

              • Or forced out by unhappy corporate masters after his corruption and incompetence was exposed to the world. But Anon didn't force him out, and no one is decrying vigilante justice on the part of the corporate masters. AFAIK no one has even suggested he was illegally forced to quit, which is a bare minimum for calling the act vigilante justice. In fact, the standard line when a company owner fires their CEO is that, far from it being illegal punishment, they own the place and it's their God-given right.

                To def

              • Not cynical at all, buddy. If you'll go back, and read the chronology - HBGary Federal was going to be shut down anyway, because they weren't making money or meeting expectations of the parent company. HBG Federal's days were numbered BEFORE this great fiasco. Anonymous may or may not have driven the final nail in the coffin of HBG Federal - but how does that matter? Dead is dead, no matter how many nails are driven into the coffin. And, it all comes back to one thing, really. Barr was trying to sell
          • Re:owned (Score:5, Interesting)

            by Runaway1956 ( 1322357 ) on Monday February 28, 2011 @10:04PM (#35344274) Homepage Journal
            Wait - who "went after" who, first? Didn't Barr start this whole thing? Or, am I just getting senile, and imagining stuff? As I recall, Barr was intent on exposing some of Anonymous' top people - and Anonymous responded by destroying Barr's shoddy-assed network. Punished? No, Barr hasn't even been punished, merely exposed for the fraud that he is. As a Navy man, I would say that Anonymous has Damage Control down pat. Oh - the self appointed vigilante - that might be Barr. After all, he's the guy who was perfectly happy to bend, fold, and mutilate the law in order to go after Julian Assange, and any other high profile targets that might have helped inflate Barr's ego.
            • A couple nights ago Colbert had a rather amusing segment summarizing the chain of events. I believe a phrase similar to "Hey, look at that hornet's nest; I'm gonna stick my dick in it!" was used. Look it up, you'll laugh. :)

              • A couple nights ago Colbert had a rather amusing segment summarizing the chain of events. I believe a phrase similar to "Hey, look at that hornet's nest; I'm gonna stick my dick in it!" was used. Look it up, you'll laugh. :)

                I decided to look this up because I missed that episode. It is pretty hilarious. Here is the link. [colbertnation.com]

      • Re:owned (Score:5, Informative)

        by nobodylocalhost ( 1343981 ) on Monday February 28, 2011 @07:02PM (#35343072)

        Just put this in perspective here... Let's take track records,

        This is what rule of law has accomplished. [huffingtonpost.com]

        This is what rule of law asked these scumbags do [arstechnica.com]

        And this is in the plans, not to mention DoJ recommended firms to BoA to do this. [arstechnica.com]

        At this point I am wondering where is Thomas Jefferson when we need him now, and you honestly are thinking about the wellbeing of some teenager's personal on-line life? They don't even come close in term of scope! If I have to be a sacrifice for Anon in order to stump out the rampant corruption then so be it! I am Spartacus!

        • Re:owned (Score:4, Interesting)

          by AB3A ( 192265 ) on Tuesday March 01, 2011 @08:34AM (#35346718) Homepage Journal

          Does anyone wonder why Jefferson was one of the staunch supporters of the Second Amendment to the US Constitution? This is the answer. And no, I'm not speaking of guns in this case, I'm speaking of self defense against evil governance. We have laws against domestic surveillance without a court approved cause. The kind of information gathering that HBG perpetrated against Glenn Greenwald is exactly the reason why such laws exist.

          This is actually a very nice example of defensive action by people against a very nasty abuse of power by government.

      • Spot. On.

        What I find hilarious about this whole thing is this Media assumption that "Anonymous" is some sort of organized group. What, there aren't a lot of pissed off, unemployed (yet intelligent) people about who have nothing to do but play crusader in front of their computers? (I envy them to the time and resources to do so, I'm busy just working to survive).

        IMO it's the same sort of institutional paranoia that gave the human race wonderful parts of history such as the "cold war" (of wh

      • Anonymous might demolish a genuine bad guy, or they might destroy the life of some innocent teenager.

        FFS! People need to stop treating Anon as some organized group.

        If a flash mob helped a lady across the street in LA and another lynched a man in New York, would you consider them the same group of people?

        Serioiusly, its just like old time lynchings they used to have in the old days when a bunch of people got together and doled out random justice... Often picking the wrong person to extract it on (like the time a bunch of laid of car workers in Detroit killed a Korean man because they were pissed off at Japa

    • by gmhowell ( 26755 )

      I thought it was the awesome firepower of the LOIC.

  • by inkscapee ( 1994086 ) on Monday February 28, 2011 @04:51PM (#35341752)
    and rehab, and the blahblahlblah usual excuses that mean "I don't know the first thing about security, but I have insider connections and can con almost anyone, especially other ignorant stupid CEOs. It's been a wonderful, lucrative experience! God bless, see you all in my new venture, securitized subprime mortgage loans!"
  • “I need to focus on [...] rebuilding my reputation."

    Hey, it's never too late to start.
  • Obligatory (Score:4, Informative)

    by Anonymous Coward on Monday February 28, 2011 @04:52PM (#35341766)

    And nothing of value was lost...

  • Excuse him folks, it's going to be a while before he can get that foot out of his mouth.
  • Anon wins. (Score:4, Funny)

    by Anonymous Coward on Monday February 28, 2011 @04:54PM (#35341776)

    FLAWLESS VICTORY

  • Ha. HaHa. HaHaHaHa. Sure, some nasty Anon broke the law here. But if anybody ever had it coming, it was this guy.
    • When your business is security and you get owned by hackers, I don't care if it was illegal, it's justified.

      If someone broke into a brinks truck and stole everything inside after the Brinks CEO said something ridiculously stupid, I would not shed a single tear.

      (Unless it was my shit that was just stolen. If it was valuable enough to be transported by Brinks though, it's probably insured anyway.)

  • by Locke2005 ( 849178 ) on Monday February 28, 2011 @04:57PM (#35341824)
    I learned this years ago: Don't get into an online pissing contest. Just don't. Both sides inevitably lose.
    • by fishexe ( 168879 ) on Monday February 28, 2011 @05:03PM (#35341884) Homepage

      I learned this years ago: Don't get into an online pissing contest. Just don't. Both sides inevitably lose.

      Hard to see how the Anon side lost here. Their prestige is up, their deadly rep is more solid than ever, and still nobody knows who they are IRL. So maybe the lesson should be, "don't get into an online pissing contest, unless you really are the most badass hacker gang in history."

      • by Predius ( 560344 ) <josh...coombs@@@gmail...com> on Monday February 28, 2011 @05:10PM (#35341970)

        Anon provided more ammo for those who want to implement multiple forms of 'internet controls' or harsher punishment for 'cyber' crime. They just fortified the positions of those they're trying to scare off.

        • by spyder-implee ( 864295 ) on Monday February 28, 2011 @05:17PM (#35342036)
          They also exposed the fraudulent plans of a major security firm. Shouldn't it fortify the position that corporations holding those kind of government contracts should come under more scrutiny?
          • by dave562 ( 969951 ) on Monday February 28, 2011 @05:29PM (#35342168) Journal

            All that will happen is that HBGary's competitors will update their marketing material. "Don't pull an HBGary. Use XYZ Security instead."

          • That's not how corporations work.

            Tech CEO's are going to look at this and say "holy shit! That could happen to me!" And then they're going to call the politicians who have gotten so much money from them and their companies, and say "You gotta make it harder for people to do what Anonymous just did!"

            And then the politicians will pass a law that significantly ups the penalties for "hacking," but because the politicians don't so much as know the difference between a Macintosh and a Nintendo, they'll screw up t

            • "Trying to apply logic to the workings of corporations is somewhat like trying to teach calculus to a cat. A totally hopeless endeavor."

              Is that why the finance industry's derivatives didn't work out?

          • Those who feel that HBGary et al. deserved what they got may feel that there was a moral lesson to be learned. The rest will simply feel that HBGary was attacked by a vigilante group, that HBGary's defenses were lacking, and that better security and larger guns (laws) will be needed to counter similar threats in the future.

            As is so often the case, the truth lies somewhere in between, getting banged by the ones who make the rules.

        • Ah, nice logic (Score:5, Insightful)

          by SmallFurryCreature ( 593017 ) on Monday February 28, 2011 @06:11PM (#35342536) Journal

          So basically, I shouldn't use any freedoms because that might give fuel to someone wishing to limit them?

          So gay people, don't be gay or people might forbid it.

          A spine, you need one. Or afraid if you get one, people will forbid it?

          • And if the antics of Anonymous were 100% legal, you'd have a point. As many of their antics are clearly illegal (like hacking into a security firm), you really have no damned point and just look like an idiot. You are not free to break the law.
            • by fishexe ( 168879 )

              And if the antics of Anonymous were 100% legal, you'd have a point. As many of their antics are clearly illegal (like hacking into a security firm), you really have no damned point and just look like an idiot. You are not free to break the law.

              Laws are nothing more and nothing less than devices for controlling people.

              • Most laws are created by those with money and power in an attempt to maintain the status quo, e.g. keep the money and power in the hands of those that currently have the money and power. "Controlling people" is not necessarily a bad thing; as a society we agree that certain acts such as murder, assault, theft are harmful, and laws simply codify punishment for these antisocial acts. Other laws seem designed primarily to protect corporations' existing business models; these laws appear to themselves be antiso
            • Re:Ah, nice logic (Score:5, Informative)

              by drinkypoo ( 153816 ) <drink@hyperlogos.org> on Monday February 28, 2011 @10:42PM (#35344544) Homepage Journal

              You are not free to break the law.

              Yes, yes you are. There may be consequences.

        • by fishexe ( 168879 )

          Anon provided more ammo for those who want to implement multiple forms of 'internet controls' or harsher punishment for 'cyber' crime. They just fortified the positions of those they're trying to scare off.

          Not really. Everybody even casually familiar with the situation, even people who know nothing about hacking or security, comes away from this story feeling like Aaron Barr is a colossal douche who had it coming to him. I think that fortifies our position, that further controls are unnecessary, by demonstrating that further 'internet controls' would only protect people who stick their penises into hornets' nests.

      • I learned this years ago: Don't get into an online pissing contest. Just don't. Both sides inevitably lose.

        Hard to see how the Anon side lost here. Their prestige is up, their deadly rep is more solid than ever, and still nobody knows who they are IRL. So maybe the lesson should be, "don't get into an online pissing contest, unless you really are the most badass hacker gang in history."

        And a gov't connected security agency has logs and logs of data that were collected during the attack. This may not have been an intentional honey pot, but that doesn't mean it can't still be used that way unless the attackers were really good.

        • They could find and prosecute every single person even tertiarily involved and the hive would simply get stronger.

          We are all Anonymous.

        • by fishexe ( 168879 )

          I learned this years ago: Don't get into an online pissing contest. Just don't. Both sides inevitably lose.

          Hard to see how the Anon side lost here. Their prestige is up, their deadly rep is more solid than ever, and still nobody knows who they are IRL. So maybe the lesson should be, "don't get into an online pissing contest, unless you really are the most badass hacker gang in history."

          And a gov't connected security agency has logs and logs of data that were collected during the attack. This may not have been an intentional honey pot, but that doesn't mean it can't still be used that way unless the attackers were really good.

          How is this any different from any of the previous Anon attacks? There are always logs, and nobody ever gets caught, except maybe a few sheeple who downloaded and ran LOIC without even realizing it would expose them. I'll believe the core of Anonymous getting de-anonymized when I see it.

      • "...the most badass hacker gang in history."

        What? I'm pretty sure the Russian mob (one of the most notorious black-hat hacking gangs in the world) would have half of Anon sobbing into their mothers' skirts within about 10 minutes if they ever got challenged by those hacker wannabes.

        • by fishexe ( 168879 )

          "...the most badass hacker gang in history."

          What? I'm pretty sure the Russian mob (one of the most notorious black-hat hacking gangs in the world) would have half of Anon sobbing into their mothers' skirts within about 10 minutes if they ever got challenged by those hacker wannabes.

          You wanna test them? I'd very much like to see this Russian mob--Anonymous showdown. If you have any mob connections, make it happen.

    • Re: (Score:3, Funny)

      by Anonymous Coward

      I think the moral of the story was "Don't stick your penis into the hornet's nest."

    • by toby ( 759 )
      You just posted THIS on SLASHDOT???
      • Uh... good point. In my defense, I certainly hope that this slashdot account is in no way traceable to my actual identity, even though one acquaintance has been able to deduce my actual identity from my posts.
  • by Chas ( 5144 ) on Monday February 28, 2011 @05:05PM (#35341902) Homepage Journal

    From the argh-tickle.

    "By combining a SQL injection attack on HBGary's Web site with sophisticated social engineering attacks"

    Uhm. WHAT?

    Sophisticated? I wouldn't call a couple of e-mails from a hijacked account asking to back-door a server "sophisticated".

    What the HBGary hack was:

    Basic SQL Injection
    Weak passwords
    Password Re-use
    SIMPLE social engineering

    Your basic molotov cocktail of fail.

    • It is sophisticated because the emails could have come from the person sending them. Proper grammar,similar writing styles, with enough background information to sound like it was legitimate.

      basically unless you were a close personal friend you couldn't easily tell the difference, unlike the $38.6 million that some guy who just emailed me has stashed in Libyan and is having a hard time getting it out safely.

    • Of course they're going to say it was some sophisticated uber attack that only ninja net gods could have done. Their stock and their reputation has taken enough of a beating. The truth would be FAR worse. "No, we were pwnt by really simple stuff like crappy passwords and ignoring basic safeguards. In the light of that though, may we work out a service contract with you to make you business secure?"

      Nope, not happening. The truth wouldn't do anything but tank them harder. Lies would be pretty much you

    • by PraiseBob ( 1923958 ) on Monday February 28, 2011 @06:46PM (#35342908)
      Their attack was vastly more complex than anything Kevin Mitnick ever did, and he is arguably the most famous hacker in history.
  • the Anonymous mask as the icon to this story!

    -

    same bullshit goes on in my company: big manager boasting security - justifying any expenses - but are not able to remember more than one password at a time and reuse it everywhere!

    • Re: (Score:2, Informative)

      by Anonymous Coward

      god damnit, it's not an "Anonymous" mask it's a Guy Fawkes [wikipedia.org] mask. the historical connection is important as it's apt as all hell.

      There should be no reason etc, see you next bonfire.

  • by woboyle ( 1044168 ) on Monday February 28, 2011 @05:11PM (#35341980)
    This butthead should be in rehab, not running a "serious" security company...
  • I'll bet he is going back to school. Learn some basics.

  • From TFA (Score:5, Insightful)

    by Kozar_The_Malignant ( 738483 ) on Monday February 28, 2011 @05:18PM (#35342042)

    >Leavy said that the company's partners had been supportive following the hack. The proposals for Bank of America and the U.S. Chamber of Commerce were simply responses to requests for services that HBGary had received. "HBGary Federal is a services company and they were asked to develop proposals," she told Threatpost.

    I see. That fact that the "services" are illegal, immoral, and unethical really doesn't enter in, because they're a service company and this is a service. Sort of like a hit man is just an HR professional specializing in staff reduction services.

    • > Sort of like a hit man is just an HR professional specializing in staff reduction services.

      I smell a sequel to "Up in the Air"

  • A sign of the times? (Score:5, Interesting)

    by Fallout2man ( 689436 ) on Monday February 28, 2011 @05:29PM (#35342172)

    You know in many ways I'm starting to wonder if the rise of Anonymous could be considered a legitimate political/social phenomena linked to the recession and how people feel increasingly left out of the political process/system because of big money buying our congress' collective ears? Widespread piracy is widely considered by many to be an economic indicator that the market has become too one-sided, maybe this is the political equivalent?

    I saw a post suggesting they may be targeting the Koch Brothers for their involvement in the current Wisconsin/multi-state effort to completely bust Unions. Is this finally the people striking back? Not to say I'm not thankful someone's taking the time to respond, but oh what a sad thing it says about humanity that we have to resort to these types of solutions to keep from getting completely steamrolled by the almighty dollar?

    • the only reason it went against scientology is because scientology was attacking random people all over the internet with lawsuits. that is why anonymous fought back.

      anonymous is never going to go after drug lords or human traffickers or etc. they go after people who @#$$ with them. The HBGary guy was going after them directly, trying to 'out' them by scraping facebook etc. that is why they went at him.

  • May I recommend also shuttering the company and all the companies like it, and the US government? How is it okay to use intimidation to try to prevent the release of incriminating documents? Moving on from that should mean reversing course. Does anybody care that the US government operates with fewer scruples than the mafia? This is insane.

    • Actually, most people do not care, and if you bring it up, they will shrug it off as if it is something to be expected. For all the high ideals on which our country was founded, most people just do not care, as long as they can get their entertainment and celebrity gossip and whatnot.
  • by hey! ( 33014 ) on Monday February 28, 2011 @06:07PM (#35342498) Homepage Journal

    He shot Alexander Humilton.

  • by Rix ( 54095 )

    Please have an orderly shut down of your company. The internets haz spoken. Disobey at your peril.

  • Barr still doesn't grasp the obvious fact that he did Bad Things, meaning things that aren't ethical and damage rather than serve the Common Good. Good riddance, psychopath. Yet another corporate criminal who got off easy when he should have got the guillotine.

  • Book and movies deals. Made for tv movies about his now public divorce. Paid interviews. Perversely a paid consultant about what NOT to do.... The dude is going to be a millionaire.

    I posted this as anon coward a few times, nobody seemed to notice.

    This whole shabby experience will set up this sleaze bag for life.

If money can't buy happiness, I guess you'll just have to rent it.

Working...