[iwar] Historical posting


From: Fred Cohen
From: fc@all.net
To: iwar@onelist.com

Mon, Jan 1, 1999


fc  Mon Jan 1, 1999
Received: (from fc@localhost) by all.net (8.9.3/8.7.3) id FAA15269 for iwar@onelist.com; Tue, 18 Apr 2000 05:21:43 -0700
To: iwar@onelist.com
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe: 
Date: Mon, Jan 1, 1999
From: Fred Cohen 
Reply-To: iwar@egroups.com
Subject: [iwar] Historical posting

          

Hacked Aagain, Mexico's Zedillo Denies U.S. Sale
Mexico's President Ernesto Zedillo is once again under cyber
attack. The President's Office late Saturday issued a statement
denying an announcement posted recently on the Internet by a
hacker, claiming Zedillo was selling a property in the United
States. "President Zedillo has not been and is not the owner of
any buildings outside the national territory,'' the office said.
"The apocryphal use of the name of the President of the Republic
is condemnable. Taking into consideration this lie, and other
lies recently published, especially on the Internet, we would
urge people not to be surprised by anything.'' The President's
Office said the federal Attorney General's Office would
investigate the latest cyber campaign of disinformation, which
came less than four months before presidential elections in July.
http://www.foxnews.com/vtech/0319/t_rt_0319_4.sml

'Crime Boy's' go on hack spree
A hacker group known as "Crime Boy's" launched cyberattacks over
the past two weeks against World Wide Web pages maintained by the
Interior Department and the Army, and several times tried to hack
into a NASA system. The hackers, believed to work from Brazil,
last week defaced the main Web pages maintained by the Bureau of
Land Management's National Training Center and the Army's Reserve
Officer Training Corps Command. The group also attempted a third
series of attacks against NASA's Jet Propulsion Laboratory, forcing
the agency to block all Internet traffic from Brazil. Reports also
surfaced last week that the National Postal Mail Handlers Union site,
which is accessible through the U.S. Postal Service's intranet, had
been attacked, but it was unclear who tried to carry out the attack.
The Crime Boy's broke into the National Training Center site, which
is part of the BLM, at 8 p.m. March 12, and replaced the agency's
Web page with a page protesting what the group called a "corrupt"
Brazilian government.
http://www.fcw.com/fcw/articles/2000/0320/web-1crimeb-03-20-00.asp

A hacker's final exam: Federal systems
More and more cybervandals are turning their attention to federal
government networks to test their virus-development skills and prove
their hacking prowess, according to one of the Army's top security
experts. In the hacker community, "you get your gold certificate by
[hacking] the Department of Defense or another federal agency," said
Philip Loranger, chief of the Command and Control Protect Division
in the Army's Information Assurance Office. Hackers on Tuesday
threatened to take down the Army's home page on the World Wide Web
today. Loranger said hacker groups consider a successful hack against
a U.S. government system a right of passage. Hacker groups also are
crawling out from the underground and establishing commercial Web
sites where other hackers can download hacking tools, he said.
http://www.fcw.com/fcw/articles/2000/0320/web-3hacku-03-20-00.asp

Kashmir conflict continues to escalate -- online
A group of Pakistani hackers has used the conflict in Kashmir as
a reason to deface almost 600 Web sites in India and take control
of several Indian government and private computer systems, according
to the group. A computer security Web site -- attrition.org -- has
records of the defacements claimed by the Muslim Online Syndicate.
The M0S, which a member says consists of mostly Pakistani Muslims,
is made up of self-proclaimed "hacktivists," those who commit
computer crimes -- ranging from simple defacement to full-scale
intrusions to denial of service attacks -- in order to bring
attention to a social cause.
http://cnn.com/2000/TECH/computing/03/20/pakistani.hackers/index.html

Cyber Siege - Be afraid, be very afraid
Your doors are locked, the windows tightly shut, and still they
find a way into your home, creeping through the phone jack,
crawling down the computer cable ... Once inside, no secret
is safe: from your bank account, to your credit card number to
your salary and taxes. Every scrap of e-mail and personal data
-- down to your height, weight and shopping habits -- are
targets. You've just been hacked, and your private information
is in the hands of a stranger. For most North Americans,
contentedly typing away on their computer keyboards, this
scenario seems feasible, but highly improbable, possibly even
paranoid. If hackers are on the prowl, why would they choose
this specific computer? There are millions of computers, and
mine is nothing special, so I shouldn't worry. Right? Wrong.
http://www.canoe.com:80/TechNews0003/18_siege1.html

DDOS attacks' ultimate lesson: Secure that infrastructure
The media frenzy surrounding the February DDOS attacks on Amazon,
Yahoo and e-Bay isn't surprising. Would-be consumers, Janet Reno,
even the President realized just how easy some of Wall Street's
favorites can be taken out of business. It was a real wake up call.
What is surprising, at least to those who've been following
e-commerce and security for awhile, is the media's failure to look
into the core problem, which is shoddy infrastructure. If companies
developing their Web stores paid more attention to security, these
attacks would not have been nearly so successful.
http://securityportal.com/direct.cgi?/cover/coverstory20000320.html

U.S. and Thailand cooperate in arrests of Internet prescription drug sellers
Thai and U.S. authorities are pursuing legal cases against
operators of three Internet pharmacies operating from Thailand
who were arrested for illegally exporting prescription drugs to
the United States, officials said today. Twenty-two people have
been arrested in Thailand as a result of a joint operation by U.S.
and Thai customs agents against online sales of drugs -- including
tranquilizers and steroids -- mailed to customers overseas, mostly
in the United States, a U.S. embassy spokeswoman said. It is the
first time the U.S. government has had a hand in closing the Web
sites of companies in another country selling prescription drugs
for export. Prescription drugs are readily available over the
counter in Thai pharmacies, despite growing government efforts
to regulate pharmaceutical sales.
http://www.sjmercury.com/svtech/news/breaking/merc/docs/011869.htm
http://news.cnet.com/news/0-1005-200-1579567.html

FDA chief urges Web Drug regulation
The Food and Drug Administration urged Congress to work with the
White House on a proposal to regulate Internet drug sales, saying
guidelines are needed to protect consumers. ``Drugs marketed and
sold illegally over the Internet present real risk for the American
consumer,'' FDA Commissioner Dr. Jane Henney told a Senate committee
Tuesday. ``FDA is grappling with the challenges posed by online drug
sales.''
http://www.sjmercury.com/svtech/news/breaking/ap/docs/340672l.htm
http://www.zdnet.com/zdtv/cybercrime/viceonline/story/0,9955,2106355,00.html

Hacker-controlled tanks, planes and warships?
Army officials are worried that sophisticated hackers and other
cybercriminals, including military adversaries, may soon have the
ability to hack their way into and take control of major military
weapon systems such as tanks and ships. Speaking this month at the
annual Army Directors of Information Management Conference in
Houston, Army Maj. Sheryl French, a program manager responsible for
the Army's Information Assurance Architecture for the Digitized Force,
said the potential exists for hackers to infiltrate the computer
systems used in tanks and other armored vehicles. Unlike in the past,
today's modern tanks and ships are almost entirely dependent on
computers, software and data communications links for functions such
as navigation, targeting and command and control.
http://www.fcw.com/fcw/articles/2000/0320/web-hacker-03-21-00.asp

Australian Treasury upgrades Web site after hacking
Australia's Department of Treasury has tightened access to its Web
site after a break-in by a group of Brazilians hackers known as
Insanity Zine Corp. Head of the Treasury Information Unit,
Geoff de la Motte, said the hackers broke into the Web site at the
weekend, leaving a message saying the group had been there and was
"interested on change our country to a better country". No other
changes were made. "There was an intrusion but no damage and no
access to any confidential or highly protected information,"
Mr de la Motte said.
http://www.technologypost.com/internet/DAILY/20000321154516173.asp1

What makes hackers tick?
They've forced multi-million-dollar corporations to their knees,
while at the same time pasting pornographic pin-ups onto government
websites with the apparent glee of giggling 12-year-olds. Their
dark minds have people afraid to use their credit cards on-line,
yet these supposedly immoral computer wizards have also seen fit,
at various times, to wipe white power and other hate groups off the
Internet map. In a bid to find out what makes hackers tick in so many
contradictory ways, the Sun went to the computer underground for an
online interview with Bronc Buster, a California hacker and critic
of cyber-security methods.
http://www.canoe.ca/CalgaryNews/cs.cs-03-21-0036.html

Ex-hacker exposes govt Web site weaknesses
Three-quarters of about 500 Web sites run by national government
ministries and agencies are susceptible to illegal access by hackers,
according to a former U.S. hacker, who has published his finding on a
Web site that focuses on unlawful access. The Web sites have security
problems, according to the former hacker known as "YTCracker," who
told The Yomiuri Shimbun that he is serving as a security consultant
to corporations. The former hacker said that he investigated about 500
Web sites run by the ministries, agencies and their affiliates in
February, shortly after some of the Web sites were found to have been
illegally accessed. He conducted the survey using software he developed
to detect Web sites susceptible to unlawful access.
http://www.yomiuri.co.jp/newse/0321cr01.htm

Windows 2001 leaked on the Web
Microsoft Corp.'s next full-fledged version of Windows, code-named
Whistler, is at least a year away from release -- but already a
pirated version of one of the latest builds has found its way onto
the Net. As reported by the Windows enthusiast sites ActiveWin and
BetaNews, a recent internal build of Whistler has been posted
illegally to a number of college and Internet sites. ActiveWin and
BetaNews are reporting that Build 2211.1 was posted Tuesday morning
and "spread as per usual, like wildfire."
http://www.zdnet.com/zdnn/stories/news/0,4586,2471310,00.html

FC