LulzSec just issued something like a manifesto on its website. The full text of it is here.
Its message is essentially this: don't be so shocked that it's leaking thousands of user passwords and emails.
The group said instead of releasing its hacked data and displaying in public for lulz, it could have just abused that information. For example, the group could have systemically auctioned the information to identity theft criminals for maximum profits and damage.
LulzSec also said other hackers, presumably those with criminal intentions, certainly don't announce the data they've compromised. Instead, they're probably sitting on it and figuring out the best way to exploit it.
Do you feel safe with your Facebook accounts, your Google Mail accounts, your Skype accounts? What makes you think a hacker isn't silently sitting inside all of these right now, sniping out individual people, or perhaps selling them off? the group warned.
You are a peon to these people. A toy. A string of characters with a value, it added.
Although LulzSec has become one of the most infamous and recognizable hacking groups to the general public, it insisted that the bigger threat is malicious hackers sitting on information that no knows they took.
LulzSec's escapades in the last few weeks have torn down the illusion of cyber security; it hacked a cybersecurity consulting firm, an FBI affiliate, the CIA website, and an international corporation (Sony). And it did all that for lulz and on a shoe-string budget.
So imagine the damage a dedicated criminal syndicate or hackers backed by the Chinese government can do.
LulzSec has revealed to the public that there is definitely something wrong with the current state of cybersecurity. In the wake of the group's rise, several cybersecurity experts are saying I told you so.
Consumers, on the other hand, have been enlightened and warned.