Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Proxy server trail leads FBI to Palin email hacker
TG Daily ^ | 9/19/2008 | Humphrey Cheung

Posted on 09/21/2008 12:22:04 PM PDT by markomalley

Anchorage (Alaska) – FBI agents are using proxy server logs to track down the hacker who broke into Sarah Palin’s Yahoo email account. The hacker gained access to the Republican Vice Presidential candidate’s account by resetting the password. He then posted details of his adventures up on a popular online forum, but that information is now leading reporters and federal investigators to the suspect – a Tennessee university college student and son of state democratic representative Mike Kernell.

A few days ago, someone going by the name of “Rubico” gloated on 4chan.org that he managed to hack into Sarah Palin’s Yahoo account. He forced a password reset by answering questions about Palin’s birthdate, zip code and where she met her spouse, Wasilla High School. Of course, by being the Republican candidate for Vice President, this information is all very easily found on the Internet. After answering the questions, Rubico reset the password to “popcorn” and read through Palin’s emails.

And it seems he was pretty thorough, saying he read, “ALL OF THEM” on the boards. He even posted up screenshots of the Yahoo email page, complete with the full URL (we’ll talk about that later). Rubico says he didn’t find anything incriminating and the emails were actually fairly mundane family pictures and correspondence. But his jubilation turned into horror as he realized that he didn’t take proper precautions in covering his tracks.

Rubico used a proxy server that shields the source IP address from website logging scripts. While this sounds great, Rubico posted, “Yes I was behind a proxy, only one, if this sh** ever got to the FBI I was FU****”

In his gloating, Rubico posted up screenshots of the Yahoo account complete with the full URL which included the proxy server url (ctunnel.com) appended with a unique identifier. For example, we used ctunnel.com to surf to YouTube and the URL reads - http://ctunnel.com/index.php/1010110A/58a5cd1e8ab47088982c83282fd768456ebe14f44221026. So it doesn’t take a genius to go through the logs and match up the ID to the appropriate IP address and BAM, you got the hacker.

But aren’t proxy servers supposed to anonymize your information? Yes and no. Dan Goodin over at The Register talked to Gabriel Ramuglia, the owner of the ctunnel.com proxy server that Rubico allegedly used. Ramuglia is upset about the ordeal because his service was never meant to be used for illegal activies and says Rubico definitely broke his site’s terms of service. Ramuglia added that every incoming IP address is logged with the time and destination website.

Ramuglia told Goodin that he hasn’t a chance yet to examine his logs, but added that there is a good chance that it will lead to the hacker. Since the interview, he’s received a call from the Anchorage Alaska FBI field office and agents there are highly suggesting that he not lose the logs.

But it gets even better. White hat hackers didn’t even need proxy information to find the culprit because they discovered that the Rubico forum handle was linked to rubico10@yahoo.com.This e-mail address is being protected from spam bots, you need JavaScript enabled to view it A few searches on Google and YouTube further links this email address to 20-year-old David Kernell, a student at the University of Tennessee-Knoxville. His father is Democratic Tennessee state representative Mike Kernell.

As you can expect, the Yahoo account has been frozen and all the incriminating forum posts on 4chan.org have been deleted. But this didn’t stop Wired.com from printing some of the posts. Don’t you just love it when hackers brag about the “leet” skills?


TOPICS: Crime/Corruption; Editorial; Politics/Elections; US: Alaska; US: Tennessee
KEYWORDS: brownshirts; hackers; kernell; mccainpalin; palin; rubico
So where are the Watergate investigations? /sarc
1 posted on 09/21/2008 12:22:04 PM PDT by markomalley
[ Post Reply | Private Reply | View Replies]

To: markomalley

Gloated on 4chan?

Probably a /b/tard


2 posted on 09/21/2008 12:23:12 PM PDT by Crazieman (McWhatever-Palin '08)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley
Move Along - Nothing To See Here .... Sheriff and Bad Guy
3 posted on 09/21/2008 12:23:28 PM PDT by SkyDancer ("I Believe In The Law Until It Interferes With Justice")
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley

I am not holding my breath.


4 posted on 09/21/2008 12:23:41 PM PDT by stockpirate (Bitter white trash clinging to God and guns. Sarah Palin - the trilla from Willsila)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley

Rubico10 = David Kernell


5 posted on 09/21/2008 12:26:28 PM PDT by xtinct (Suicide Hotline... !! "Obama here" --> Please Hold...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley
Rubico says he didn’t find anything incriminating and the emails were actually fairly mundane family pictures and correspondence.

I still find is fascinating how the media used this incident to attack Palin for supposedly using the account for government business, and yet not a word on the invasion of privacy or that this is a serious felony.

6 posted on 09/21/2008 12:27:36 PM PDT by MaestroLC ("Let him who wants peace prepare for war."--Vegetius, A.D. Fourth Century)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley

was the FBI able to get one-to-one contact with the hacker so they could give him a stern warning??


7 posted on 09/21/2008 12:34:05 PM PDT by zwerni (*** PALIN/mccain 2008 ***)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Crazieman
This is the big problem with being 20 years old. He or she who makes a really big score, legal or illegal, usually can't resist bragging. The ability to keep one's mouth tightly shut only comes with years and pain, if ever.
8 posted on 09/21/2008 12:37:19 PM PDT by libstripper
[ Post Reply | Private Reply | To 2 | View Replies]

To: markomalley

“Ive got the FBI so far up my ass, all I can taste is Brylcreem!”

Uncle “Junior” Soprano


9 posted on 09/21/2008 12:40:09 PM PDT by Bean Counter (Stout Hearts.....)
[ Post Reply | Private Reply | To 1 | View Replies]

To: zwerni

If they know it was him, WHY hasn’t he been arrested?


10 posted on 09/21/2008 12:50:42 PM PDT by Cricket24 (Just one of those Conservative women!)
[ Post Reply | Private Reply | To 7 | View Replies]

To: Bean Counter
All I can hope for is that this criminal gets exactly the same punishment as you and I would if we commited a similar crime.
It is a felony, is it not?

A couple of years (and a permanent record) are not disproportionate.

Most young people manage to go through their teens and early 20s without becoming felons.

Ain't life a bitch?

11 posted on 09/21/2008 12:51:17 PM PDT by Publius6961 (Change is not a plan; Hope is not a strategy.)
[ Post Reply | Private Reply | To 9 | View Replies]

To: markomalley
"Rubico posted, “Yes I was behind a proxy, only one, if this sh** ever got to the FBI I was FU****”"

Well, if the sweet young thing goes to prison, he might very well be "FU****".

Photobucket

.

12 posted on 09/21/2008 12:52:42 PM PDT by Cobra64 (www.BulletBras.net)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley
Rubico is the Latin version of Rubicon, as in the phrase "to cross (or "pass") the Rubicon "take a decisive step," 1626, in ref. to small stream to the Adriatic on the coast of northern Italy, which in ancient times formed part of the southern boundary of Cisalpine Gaul; crossed by Caesar Jan. 10, 49 B.C.E., when he left his province to attack Pompey. The name is from L. rubicundus "ruddy," in ref. to the color of the soil on its banks.

An appropriate name for a little Commie.

13 posted on 09/21/2008 1:09:17 PM PDT by hellbender
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley
>"So where are the Watergate investigations?>"

Well, one of the was running against the chosen one. Maybe we should axe for her help? She has experience.

14 posted on 09/21/2008 1:38:27 PM PDT by rawcatslyentist (I will stand with the Muslims ~B Hussein Obomunist ~~~~~~~~~~~~~~~ Verito Possumus~Verified Sleeper!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley
The infamous, and not so bright, David Kernell:


15 posted on 09/21/2008 2:48:54 PM PDT by newzjunkey (McCain-Palin! YES CA Prop 4. (Family notification for underage abortions))
[ Post Reply | Private Reply | To 1 | View Replies]

To: Cricket24
I'm sure they're still gathering evidence. (/sarcasm)

I think I read he had been interviewed. I'll be quite unhappy if he gets a meek slap on the wrist. It's the perfect case to use as an example for both cracking an account and an attempt at political intimidation because that's exactly what he was trying to do here. Let's start with 10 years.

16 posted on 09/21/2008 2:53:02 PM PDT by newzjunkey (McCain-Palin! YES CA Prop 4. (Family notification for underage abortions))
[ Post Reply | Private Reply | To 10 | View Replies]

To: newzjunkey
Has Daddy cut off his allowance yet?
17 posted on 09/21/2008 3:01:01 PM PDT by Ciexyz
[ Post Reply | Private Reply | To 16 | View Replies]

To: MaestroLC
I still find is fascinating how the media used this incident to attack Palin for supposedly using the account for government business, and yet not a word on the invasion of privacy or that this is a serious felony.

This is nothing new. Wiretappers recorded a conversation Gingrich had and the mainstream media talked about the contents of what should have been a private conversation. The news stories were all about trying to find if anything in the conversation hinted at something illegal Gingrich may have done. The Democrat stooges who did the illegal wiretap were treated like heroes.

18 posted on 09/21/2008 3:04:13 PM PDT by Wilhelm Tell (True or False? This is not a tag line.)
[ Post Reply | Private Reply | To 6 | View Replies]

To: markomalley

btt


19 posted on 09/21/2008 4:15:53 PM PDT by Cacique (quos Deus vult perdere, prius dementat ( Islamia Delenda Est ))
[ Post Reply | Private Reply | To 1 | View Replies]

To: markomalley

I just wonder why he hasn’t been arrested yet. This will dissappear down the news memory hole like everything the rats do.


20 posted on 09/21/2008 7:31:58 PM PDT by beckysueb (Drill here! Drill now!)
[ Post Reply | Private Reply | To 1 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson