How do I "turn in" a hacker i found?

[stogilon]

So my 3.1 site was hacked today. I cleaned it out (hopefully completely) and found in the code the "organization's" name, Facebook page and even the Facebook page for the individual hacker.

My question is, what can I do with this info? It looks to be some budding group of wanna-bees, but you never know who's going to be the next terrorist hacker. He's even posting his hacks on his Facebook page.

Is there anyone I can report them to so they can be watched or something? I'm in the US, they are in Turkey. I'm sure they feel no one can do anything.

[Bernard T]

Hi stogilon,

unfortunately, international laws are very weak in the field of IT security. And it really depends on many factors (level of cooperation between countries, or between national CERT's, level of impact of the attack or importance of the attacked website). But it's definitely worth to try to do something.

I recommend that you report all the details to your national CERT institution, and follow their instuctions. Here is the list:
https://www.cert.org/incident-managemen ... csirts.cfm

Good luck and let us know if you had any success.

[stogilon]

Thanks Bernard, from the link you sent I found the Turkish site for reporting cyber attacks: https://www.usom.gov.tr/index.html
I submitted the hack to them. I'm hopeful there will be something done about it, but not really expecting it.

This guy was posting all his hacks on his Facebook page (including mine). He's actually claiming responsibility: https://www.facebook.com/,,[Kudos[
Be aware of [Kudos] (his group): https://www.facebook.com/[Kudos]

[Bernard T]

Usually (not necessary the rule though) CERT-s accept reports from their domestic citizens, or when an incident happens on servers located in that particular country. That's why I suggested you to contact your local (US) CERT.
But, sure, it doesn't hurt to contact Turkish CERT as well, you can always excuse yourself on the ignorance