Posted on 08/21/2009 3:51:51 AM PDT by justa-hairyape
Hackers are becoming more organised as a new pool of talent coming from eastern European countries Russia in particular becomes available, writes CIARA OBRIEN
A number of attacks involving Russian hackers has hit the headlines in recent weeks. The most recent was the charging of Albert Gonzalez, a former US government informant who has already been jailed in connection with hacking cases. He is accused of stealing 130 million credit and debit card numbers. Two unnamed Russian co-conspirators were also charged in relation to the theft, said to the biggest case of identity theft seen yet.
Mr Harbison, a director and IT forensic specialist in Grant Thorntons forensic and investigation services, said Russia has a formidable reputation in the hacking field. Gonzales wasnt so much of a hacker himself, he was the manager of hackers. He organised specialised teams. He was the kingpin of a group, and you are going to see more of that, he said.
On earlier hacks, he used Latvians, Ukrainians, Belarussians and Chinese. He was a very good recruiter of specialists.
There is a risk that countries that have political grudges against others and may have lesser standards of ethics in governance may decide cyber warfare is a preferable means of damaging your enemies than physical warfare, said Cian Blackwell, partner in business risk services at Grant and Thornton. Its certainly cheaper and easier to do without it being traced to you.
(Excerpt) Read more at irishtimes.com ...
Speaking of CyberWar. This ones been hot and cold for years. Going hot again.
ARMENIA: WAVE OF HACKER ATTACKS BLAMED ON AZERBAIJAN, TURKEY
I’ve long grown weary of Wired mag and its snarky Web 2.0 trendiness, but they are actually doing some good coverage of the Gonzales crimewave.
Aug 20:
http://www.wired.com/threatlevel/2009/08/gonzalez-evidence/
Aug 17:
http://www.wired.com/threatlevel/2009/08/tjx-hacker-charged-with-heartland/
June 18:
http://www.wired.com/threatlevel/2009/06/watt/
Dunno, is that so?
> Ive long grown weary of Wired mag and its snarky Web 2.0 trendiness,
I’ve got a box of old WiReD magazines, complete from 1.02 thru 4.x or something. I ran out of patience with them shortly after WiReD “discovered” the web. They’re all in very good nick, one day I’m going to sell them or donate them to a library or something.
“Back in the day” they were pretty K3wL.
“Snarky” is a great way to describe their current demeanor. I’ve had an Internet account of some description or another for longer than most of their contributors have been alive. “Snarky” doesn’t go down well with me.
* wired.com
Does that mean links also ? Looks like very good articles. Have not read two of them yet. Thanks.
I also have a history with Wired that precedes even their first issue. And like you, my Internet use goes goes back to the 80’s.
But over the years I’ve gotten totally disgusted with the whole California tech-trendy “ain’t we cool” attitude and honestly Wired is such a distillation of that, it’s actually repellent and insufferable these days. I haven’t bought a copy in years.
Excerpts follows - DO NOT go to the website below. These guys is serious.
C100 SHELL CREATED BY CAPTAIN CRUNCH SECURITY TEAM
WWW.CCTEAM.RU
C100 SHELL - REVAMPED (X2300) MODIFIED BY LOCUS7S
UNDERGROUND NETWORK
--[::hack_hosthacker@yahoo.com::]
Modified by Shadow & Preddy
End excerpts
A Russian written utility available only to VIP members of the LOCUS7S. Looks like its been around since Feb 14 2007. Anyone know anything about this ? Was basically called GaMeOvEr - Project WAIT.
O.K. so how do I defend myself from these thieves?....quit using my credit card and go back to cash and checks for everything?....I’ve really gotten used to the convenience of the credit card...I do a lot with it because Cabela’s gives me bonus points even though I pay my bill in full every month....how are you folks handling the threat?
Gangsters?, Internet?
Does this include 0bama and his gang of thugs that collect names of those opposed to their dictatorship?
What I would recommend is only using online banking when you have too. Much better to stop by an ATM to just check your balance. According to research I just did on the web, this was a Remote File Inclusion attack RFI. I only have a basic non-educated grasp of php script code, but I know html very well (just too busy to learn php script). There was some html code at the end of the hacked file that looks like they were opening up collapsed tables. What you will see is what I saw on my paypal login window. After logging into paypal, the next screen had a form or table in the middle that was asking for a bank ATM card number and pin. The English sentence right above the data boxes was not phrased properly. That was the clue and they did not compromise my paypal, but they probably got my SSN. They were good. Dam good. Fooled me so much I actually called paypal and was going to complain that they had sentence so poorly written. But I figured out while I was on the phone on hold, that must be a hacker.
This C100 Modified Shell had some New Modifications that are actually listed in the file.
Correction - The Credit Card swipe fraud that just occurred and made the news for attempting to steal the most cc numbers ever, was a SQL-injection attack. Nothing to do with me. My RFI experience was just an attack on and through my low volume server where I was also the main user.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.