06/08/2011 01:01 EDT | Updated 08/08/2011 05:12 EDT

Conservative Database Hacked, Names And Emails Made Public


CBC -- A Twitter account that claimed to have hacked the Conservative Party website this week claimed Wednesday it also hacked a party database, and posted names and emails online it said were from that database.

The account, LulzRaft, posted a message this message Wednesday morning:

"The conservatives said no contributor data was accessed..I wonder where this sample came from then!" and linked to a page on the public text-sharing website Pastebin that listed names and email addresses under the heading "Donation Contributors - A Small Sample."

The list contained more than 5,600 entries, with some names repeated with different email addresses. Donation amounts were not listed, and it is unclear where the names and addresses are from or if they were in fact donors.

The list appeared to have been removed from the site by midday.

The information was posted online a day after Conservative Party spokesman Fred DeLorey said Tuesday's hack was limited only to the party website and did not affect the party's vast database with personal information about the party's members.

That party website, hosted by a third party, did have a registration and login option, which would have retained user names and email addresses, separate from internal party databases.

DeLorey could not immediately be reached for comment Wednesday.

The LulzRaft Twitter account also posted a message Wednesday morning saying "the funny thing is, we had more trouble using the conservative party CMS [content management system] then we did hacking the site...literally."

LulzRaft was also claiming responsibility Wednesday for hacking Husky Energy's website,, and posting a message under the header "Conservative Appreciation Day," that referred to Tuesday's choking hoax.

"Due to yesterdays Harper hoax, we feel it is necessary to show conservatives that we care. So today, June 8, we will be providing free gas to all conservatives. Just use the coupon code 'hash-browns'," the message on's front page said.

Graham White, a Husky spokesperson, was unaware of the prank until contacted by CBC News. "This is definitely not a Husky initiative," he said. The message was taken down minutes after he was alerted.

On Tuesday, a fake news release appeared on the website that said Prime Minister Stephen Harper had been rushed to hospital after choking on a hash brown at breakfast.

The story posted under the news release section of the website had Ottawa buzzing and people talking about it on Twitter. The Prime Minister's Office quickly confirmed that it was a fake and that Harper was fine.

In addition to the fake "breakfast incident" report, a link at the bottom of the party's web page was altered to point to the LulzRaft Twitter account.

Messages on that Twitter page referred to the stunt. "Any bets on how long until anyone notices my 'special article'?" a tweet posted Tuesday morning said, with a link to the Conservative website.

Passwords that appeared to be related to party website were posted under the LulzRaft account on a public text sharing site in a post dated June 7.

The LulzRaft Twitter account bio makes reference to LulzSec, which in recent weeks has claimed responsibility for the hacking of sites and databases belonging to high-profile multinational corporations such as Honda and Sony, public broadcaster PBS and even the FBI.

It is unclear what relationship there is, if any, between LulzRaft and LulzSec.