[iwar] Historical posting
From: Fred Cohen
From: fc@all.net
To: iwar@onelist.com
Mon, Jan 1, 1999
fc Mon Jan 1, 1999
Received: (from fc@localhost) by all.net (8.9.3/8.7.3) id FAA15269 for iwar@onelist.com; Tue, 18 Apr 2000 05:21:43 -0700
To: iwar@onelist.com
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe:
Date: Mon, Jan 1, 1999
From: Fred Cohen
Reply-To: iwar@egroups.com
Subject: [iwar] Historical posting
The lesson: Steal from the rich and they will chase you down...
========================================================================
Hackers got Bill Gates' credit card info
A teenager arrested in Wales for allegedly hacking into
e-commerce Web sites had obtained the credit card details of
Bill Gates, head of Microsoft Corp. and the world's richest
man, newspapers said on Sunday. Raphael Gray, 18, was arrested
on Saturday for Internet fraud after a joint operation between
the FBI and Welsh Police. The FBI said on Saturday that losses
connected to the activities of Gray and another unnamed
18-year-old could exceed $3 million. The 'Saint of E-commerce'
But Gray, the self-styled "Saint of E-commerce," said: "I just
wanted to prove how insecure these sites are. I have done the
honest thing, but I have been ignored." Gray and his accomplice
e-mailed credit card details, including those of Gates, to NBCi,
a subsidiary of the NBC broadcasting group, the paper said.
http://www.zdnet.com/zdnn/stories/news/0,4586,2473689,00.html
Consultant was key to 'Curador' bust
The FBI crowed, but security specialist led police to Wales.
While the FBI was quick to take credit for the arrest last
week of two teenagers who allegedly stole information on
26,000 credit cards from Internet retailers, a Canadian
computer security consultant working with British authorities
tracked the suspects back to their small village in Wales
before the U.S. agency even got involved, MSNBC.com has learned.
http://www.msnbc.com/news/386402.asp
Welsh hackers could face extradition
The teenagers who stole Bill Gates' credit card details may
be going on a long journey. It is uncertain whether the Welsh
teenagers arrested this weekend for hacking into e-commerce
Web sites and stealing Bill Gates' credit card data will be
tried in their home country, or face extradition to the US.
Dyfed-Powys Police, the force involved in the joint operation
with the FBI to arrest the two men, dismissed media reports
that they would be extradited as speculation and says that
it is too early to determine their fate.
http://www.zdnet.co.uk/news/2000/12/ns-14370.html
Curador Worked As E-Commerce Consultant
Before he was arrested by police in Wales last Thursday, the
online credit card thief who called himself "Curador" worked
as an e-commerce consultant, his former boss revealed Monday.
As previously reported, an 18-year-old man in Clynderwen,
Wales was arrested Thursday in connection with break-ins at
nine e-commerce sites in recent weeks. Under U.K. law,
Curador's name was not released by police, but the Britain's
Daily Telegraph reported Saturday that Curador's real name
was Raphael Gray. The true name of his accomplice, who was
also arrested, was not disclosed. While he was allegedly
breaking into online stores in the United States, Canada,
Thailand and Great Britain, Gray was also working to develop
an e-commerce strategy for Console King, a mail-order company
in Narberth, Wales.
http://www.internetnews.com/ec-news/article/0,2171,4_328071,00.html
========================================================================
Canada Called Hotbed Of Cyberterrorism
An American intelligence agency has determined that up to 80
percent of foreign attacks on US computers either originate
or pass through Canada. The claim follows suspicions that some
recent hacker attacks were routed through Canadian computers.
A weekend article by the Ottawa Citizen newspaper said a report
prepared last year for Canada's Department of National Defence
quotes the US Defence Intelligence Agency, the military
counterpart to the CIA, as warning that Canada is seen as a
"Zone of Vulnerability."
http://www.newsbytes.com/pubNews/00/146343.html
Census tests security
The Census Bureau has hired a company to try to break into
its Internet site and brought in the super-secret National
Security Agency to test Census security systems. Census
officials said they are certain the data is safe but want
to make sure there are no vulnerable spots. "Every day,
people are scanning our ports. It's not just our site. It's
any site, said J. Gary Doyle, who is responsible for systems
integration at the Census Bureau.
http://www.fcw.com/fcw/articles/2000/0327/web-1census-03-27-00.asp
China clamp on net music sales
China has banned web sites backed by foreign investment from
selling music. Authorities also promised to crack down on
pirates of MP3 technology, which allows consumers to download
digital music via the internet. The move comes as fears grow
of a sharp rise of copyright infringements as more Chinese
download music from the internet. Authorised internet traders
are already required to show their operating licenses and the
telephone number of the issuing departments on their web pages.
http://news.bbc.co.uk/hi/english/world/asia-pacific/newsid_690000/690250.stm
One year after Melissa, IT outsources security attack watch
ONE YEAR AGO next week, the infamous Melissa macrovirus wreaked
unprecedented havoc on corporate and consumer e-mail systems
worldwide, setting the stage for a long list of troublesome
viruses and worms that followed, and prompting a shift by major
anti-virus vendors toward managed services. "I think it's
unrealistic to think end-users today are going to be able to
keep up with all the threats and vulnerabilities that can occur
at their perimeter. Managed services is the only way they can
deal with it," said Matthew Kovar, an analyst at the Yankee Group,
in Boston. "We are seeing a plethora of vendors coming along the
lines of offering security services. It makes sense."
http://www.infoworld.com/articles/hn/xml/00/03/27/000327hnmelissa.xml
Tiny keyboard snooping device tracks passwords
A tiny device that can be hidden within a keyboard or a PS/2 plug
and secretly record half a million user keystrokes has been
launched by New Zealand hardware manufacturer, Working Technologies.
Unlike most surveillance technologies, 'Key Ghost' does not require
any software to be covertly installed. All data is stored directly
on the device and can be summoned by entering a "Personal Unlock Code"
(PUC) through a keyboard. The device can then be removed and the
information retrieved by another computer. The most obvious
application of this technology is to capture usernames and passwords
or data that has been encrypted or otherwise protected on a machine.
Working Technologies also markets the add-on as a handy data recovery
tool. Working Technologies says the FBI uses similar technology to
carry out computer surveillance. Key Ghost devices cost between $99
(£62) and $309 (£195).
http://www.zdnet.co.uk/news/2000/12/ns-14347.html
High-Level Consultants Form New Security-Services Firm
A group of security consultants formerly with Ernst & Young LLP,
PricewaterhouseCoopers and KPMG LLP have teamed up to form a new
security firm. Foundstone Inc., based here, will offer consulting
services such as security assessment and incident response,
hands-on classroom training, and security information via both
the Web and print. "Our main goal is training and consulting,"
said George Kurtz, chief executive of Foundstone and former
security consultant at Ernst & Young. "We believe the e-commerce
environment is almost being stymied by the lack of security and
lack of security professionals."
http://www.crn.com/dailies/digest/breakingnews.asp?ArticleID=15164