[N3WBI3]

Nice reminder *there is no bullet proof os and best admin practices are key when putting a box online.

This is where someone should have been using tripwire and if I ran a hosting service you can be darn sure I would have (be it on windows or *nix)

[N3WBI3]

OSS Ping.

[Deguello]

"While there, he noticed an unusual trend when taking down phishing sites."

Washington Mutual did more than I can say for Bank of America or Bank One/Chase...they don't care, just ask them.

If he really wanted to take down the phishers, his employer would hire Blackwater for a Ross Perot style raid.

[Knitebane]

eBay recently did an in-depth analysis of its threat situation, and while the company is not releasing the results of this analysis, it did uncover a huge number of hacked, botnet computers, said Dave Cullinane, eBay's chief information and security officer, speaking at a Microsoft-sponsored security symposium at Santa Clara University.

"Hey! Never mind the millions of spyware-infected Windows machines making up the bot networks! We found some Linux boxes were hacked too!"

"Did I do it okay Mr. Gates?"

"You're going to invite me back next year now, right Bill?"

[Halfmanhalfamazing]

One of the posters(wirespot) over at OSNews had an(seemingly) excellent reply to this:

http://www4.osnews.com/comments/18738

^^^^^^^^^^^^^^I see what you did there. You assumed that a clueless speaker, at a Microsoft conference, would speak the truth about Linux.

If you would’ve taken a moment to look around and read, say, the comments that followed the same story in The Register days ago, perhaps he’d have benefitted from other people already debunking this ridiculous report and save OSNews the embarrassment:
http://www.theregister.co.uk/2007/10/03/ebay_paypal_online_banking/

While there, he noticed an unusual trend when taking down phishing sites. “The vast majority of the threats we saw were rootkitted Linux boxes, which was rather startling. We expected Microsoft boxes,” he said.

This is either utter stupidity, or FUD. Home computers are not used for phishing. Phishing is run from cheap webhosting, which may be running on Linux, but definitely not on “rootkitted boxes”. If there’s a rootkit on your home computer there’s no need for phishing anymore, is there? It can use a keylogger and just wait for your login. Or scrape your browser cache or files for data.

Not to mention that eBay is refusing to show any proof and I personally have yet to hear of any worm or form of rootkit affecting any significant number of Linux home desktop users. And if there’s no security hole to take over machines there can be no botnets built on Linux.

The whole article is a mix of innuendo and plain bulls**t. It’s so obvious a cheap shot at Linux that it’s not even funny. It’s just boring. Slow newsday, eh?^^^^^^^^^^^^^

When I first read about this story, my BS detector went off.

[Disambiguator]

I didn’t want to start a thread for this, but here is some hilarious eBay feedback. This seemed like a good place for it.

http://feedback.ebay.com/ws/eBayISAPI.dll?ViewFeedback2&userid=tryork5ifp&ftab=FeedbackLeftForOthers