Stories
Slash Boxes
Comments
typodupeerror delete not in
  • Preferences

Slashdot is powered by your submissions, so send in your scoop

+-   The legality of publishing email addresses. on Thursday November 05, @12:00PM oobayly

Submitted by oobayly on Thursday November 05, @12:00PM
spam
oobayly writes "Like most people I receive a fair amount of chain emails, some humourous, most downright idiotic. No matter how I try educating colleagues, family & friends, I still receive them and am now resigned to the fact that you just can't help some people.
One of my explanations of why forwarding these emails is a bad idea was that they are a perfect harvesting ground for spammers: a very high percentage of the addresses will be live. This, it turned out fell upon deaf ears. If you're stupid enough to believe that Dell will give you a free laptop then you're probably the type of person that believes that a Nigerian general wants to give you $150,000,000 (ONE HUNDRED AND FIFTY MILLION DOLLARS!!!!).

As a bit of an experiment, I used a few tools (grep, awk, etc) to parse my Maildir for any emails that appeared to have been forwarded and extracted anything that looked like an email address. As one would imagine there were a good few (thousand) email addresses. Most of these email addresses belong to innocent by-standers. The real culprits are the people who forward them, and it takes only a little more effort to extract only those.

Part of me has decided these people who waste bandwidth, time and have caused me to lose my hair deserve to pay. What better way to do it than to publish their email addresses for spammers to harvest?

Of course, this is unethical, but is it actually illegal? By sending an email urging others to forward the content, are they not actively pushing their details into the public domain?

Answers on postcards please."
Read More... 0 comments submission

Comments: 1 +-   Backdoor for Millions Facebook & MySpace Accou[->] on Thursday November 05, @08:57AM Anonymous Coward

Submitted by Anonymous Coward on Thursday November 05, @08:57AM
security
An anonymous reader writes "Yvo Schaap, a young Dutch application developer on Facebook, stumbled on a back door into any user account that accesses the application he's working on. He discovered the exploitable mistake while trying to get around a function limitation on his application, and realized he could modify the accounts and that his illegitimate interventions into the account couldn't even be traced."
Link To Original Source
Read More... 1 comments submission

+-   SSL Renegotiation: Another Protocol Bites The Dust[->] on Thursday November 05, @08:41AM jamie

Submitted by jamie on Thursday November 05, @08:41AM
security
Link To Original Source
Read More... 0 comments submission

+-   Facebook and MySpace security: backdoor wide open[->] on Thursday November 05, @08:28AM jamie

Submitted by jamie on Thursday November 05, @08:28AM
security
Link To Original Source
Read More... 0 comments submission

+-   Generic TLS MITM attack[->] on Thursday November 05, @07:59AM imbaczek

Submitted by imbaczek on Thursday November 05, @07:59AM
security
imbaczek writes "The SSL 3.0+ and TLS 1.0+ protocols are vulnerable to a set of related attacks which allow a man-in-the-middle (MITM) operating at or below the TCP layer to inject a chosen plaintext prefix into the encrypted data stream, often without detection by either end of the connection. This is possible because an “authentication gap” exists during the renegotiation process at which the MitM may splice together disparate TLS connections in a completely standards-compliant way. This represents a serious security defect for many or all protocols which run on top of TLS, including HTTPS."
Link To Original Source
Read More... 0 comments submission

+-   PayPal Introduces Open API[->] on Wednesday November 04, @12:31PM m2pc

Submitted by m2pc on Wednesday November 04, @12:31PM
it
m2pc writes "PayPal has just announced the availability of their Open API under the "PayPal X Program". This enabled developers to integrate PayPal payment processing services without forcing users to redirect to PayPal's website to enter payment information. This new initiative is designed to allow the company to better compete with the likes of Google and Amazon, which offer similar services.

I wonder how much they paid for their domain: x.com?"
Link To Original Source
Read More... 0 comments submission

+-   FBI warns of $100M cyber-threat to small firms[->] on Wednesday November 04, @07:17AM alphadogg

Submitted by alphadogg on Wednesday November 04, @07:17AM
security
alphadogg writes "Cyberthieves are hacking into small- and medium-sized organizations every week and stealing millions of dollars in an ongoing scam that has moved about $100 million out of U.S. bank accounts, the U.S. Federal Bureau of Investigation warned Tuesday. It's now one of the top problems being addressed by the National Cyber Forensics and Training Alliance (NCFTA), which works with the FBI and industry to share information about cyber attacks, according to NCFTA Executive Director Ron Plesco. "Every year there seems to be a trend and this has been the trend this year," he said."
Link To Original Source
Read More... 0 comments submission

Comments: 1 +-   SORBS Blocklist Reportedly Sold For $451K[->] on Wednesday November 04, @01:54AM palegray.net

Submitted by palegray.net on Wednesday November 04, @01:54AM
spam
palegray.net writes "SORBS, a well-known email blocklist provider, has reportedly been sold for $500M. Early reports indicate an acquisition by GFI, a company specializing in various communications services. In recent years, SORBS has been the target of frequent accusations of mismanagement and poor conduct, leading many to wonder if this turn in events might signal a chance for improved behavior. Citing lack of ISP support, the blocklist released statements earlier this year that they would be shuttering their operation."
Link To Original Source
Read More... 1 comments submission

Comments: 1 +-   Windows 7 vulnerable to 8 out of 10 viruses [->] on Tuesday November 03, @04:04AM xsee

Submitted by xsee on Tuesday November 03, @04:04AM
microsoft
xsee writes "Sophos recently tested the released version of Windows 7 to determine how much security has improved in the new operating system. The result? 8 out of 10 viruses received by Sophos successfully executed on Windows 7. It may be the most secure Windows ever, but can we trust it?"
Link To Original Source
Read More... 1 comments submission

+-   Cable modem hacker busted by feds [->] on Monday November 02, @09:11PM alphadogg

Submitted by alphadogg on Monday November 02, @09:11PM
security
alphadogg writes "An expert on cable modem hacking has been arrested by federal authorities on computer intrusion charges. According to the U.S. Department of Justice, Ryan Harris, 26, ran a San Diego company called TCNISO that sold customizable cable modems and software that could be used to get free Internet service or a speed boost for paying subscribers. Harris, also known as DerEngel, was charged on Aug. 16, but the grand jury indictment was not unsealed until Monday, several days after his Oct. 23 arrest. He faces a maximum sentence of 20 years in prison and a $250,000 fine, the DOJ said. The six-count indictment charges him with conspiracy, computer intrusion and wire fraud.

Hackers have known for years that certain models of cable modem, such as the Motorola Surfboard 5100, can be hacked to run faster on a network, a process known as uncapping. However, the question of whether uncapping a modem is illegal is "not clear," according to Bill Pollock, founder of No Starch Press, which published Harris's 2006 how-to book Hacking the Cable Modem."
Link To Original Source
Read More... 0 comments submission

+-   Microsoft: Malware rates linked to pirated Windows[->] on Monday November 02, @03:43PM CWmike

Submitted by CWmike on Monday November 02, @03:43PM
security
CWmike writes "Microsoft said today that computers in countries with high rates of software piracy are more likely to be infected because users are leery of applying security patches. "There is a direct correlation between piracy and the malware infection rate," said Jeff Williams, head manager of the Microsoft Malware Protection Center. Highlighting research that showed worms to be the most prevalent computer security problem today, Williams said the link between PC infection rates and piracy is due to the hesitancy of users of pirated software to use Windows Update. China's piracy rate is more than four times that of the U.S., but the use of Windows Update in China is significantly below that in the U.S. Same for Brazil and France. But the Microsoft's own data doesn't always support William's contention that piracy, and the hesitancy to use Windows Update, leads to more infected PCs. China, for example, boasted a malware infection rate — as defined by the number of computers cleaned for each 1,000 executions of the MSRT — of just 6.7, significantly lower than the global average of 8.7 or the U.S.'s rate of 8.2 per thousand. France's infection rate of 7.9 in the first half of 2009 was also under the worldwide average."
Link To Original Source
Read More... 0 comments submission

+-   Cracking PGP in the Cloud[->] on Monday November 02, @12:23PM pariax

Submitted by pariax on Monday November 02, @12:23PM
security
pariax writes "So you wanna build your own massively distributed password cracking infrastructure? Electric Alchemy has published a writeup detailing their experiences cracking PGP ZIP archives using brute force computing power provided by Amazon EC2 and a distributed password cracker from Elcomsoft. Full article at http://news.electricalchemy.net/2009/10/cracking-passwords-in-cloud.html"
Link To Original Source
Read More... 0 comments submission

+-   IT Snake Oil: Six Tech Cure-Alls That Went Bunk[->] on Monday November 02, @11:06AM snydeq

Submitted by snydeq on Monday November 02, @11:06AM
it
snydeq writes "InfoWorld's Dan Tynan surveys six 'transformational' tech-panacea sales pitches that have left egg on at least some IT department faces. Billed with legendary promises, each of the six technologies — five old, one new — has earned the dubious distinction of being the hype king of its respective era, falling far short of legendary promises. Consultant greed, analyst oversight, dirty vendor trick — 'the one thing you can count on in the land of IT is a slick vendor presentation and a whole lot of hype. Eras shift, technologies change, but the sales pitch always sounds eerily familiar. In virtually every decade there's at least one transformational technology that promises to revolutionize the enterprise, slash operational costs, reduce capital expenditures, align your IT initiatives with your core business practices, boost employee productivity, and leave your breath clean and minty fresh.' Today, cloud computing, virtualization, and tablet PCs are vying for the hype crown."
Link To Original Source
Read More... 0 comments submission

+-   Worm Infections in the Enterprise Rose by 100%[->] on Monday November 02, @10:23AM Anonymous Coward

Submitted by Anonymous Coward on Monday November 02, @10:23AM
security
An anonymous reader writes "The latest Microsoft Security Intelligence Report indicates that worm infections in the enterprise rose by nearly 100 percent during the first half of 2009 over the preceding six months. Rogue security software remains a major threat to customers; however, 20 percent fewer customers were affected by rogue infections during the past six months. Worms rely heavily on access to unsecured file shares and removable storage volumes, both of which are plentiful in enterprise environments."
Link To Original Source
Read More... 0 comments submission

+-   FTC delays identity protection laws yet again[->] on Monday November 02, @08:51AM coondoggie

Submitted by coondoggie on Monday November 02, @08:51AM
security
coondoggie writes "Well, maybe the fourth time will be the charm. This time the Federal Trade Commission said it delayed the enforcement of its Red Flags identity protection rules until June 1, 2010 at the request of Congressional members. At the request of Members of Congress, the Federal Trade Commission is delaying enforcement of the "Red Flags" Rule until June 1, 2010, for financial institutions and creditors subject to enforcement by the FTC. The rules have been delayed three times and were originally set to become practice Nov. 1, 2008.

http://www.networkworld.com/community/node/46951"
Link To Original Source
Read More... 0 comments submission

+-   Microsoft cleans up last month's Patch Tuesday[->] on Monday November 02, @07:09AM nk497

Submitted by nk497 on Monday November 02, @07:09AM
microsoft
nk497 writes "Microsoft has had to re-release patches from last month's Patch Tuesday. One of the patches broke Communications Server, while the other two created detection issues. The fixes are now available here."
Link To Original Source
Read More... 0 comments submission

+-   What can be done to combat Botnets on Monday November 02, @06:20AM William Adama

Submitted by William Adama on Monday November 02, @06:20AM
security
William Adama writes "In the past week, I've observed a spike in brute-force attacks on ssh on one of our servers. Closer inspection leads me to the conclusion that this is (once again) an instance of a distributed attack conducted over a botnet. Now, I could just lean back and relax, since logging into ssh with a password has been disabled for several years on all our servers — the attacker will never succeed. But it rankles with me that there are all these compromised machines out there, and there is nothing I can do. So I've cobbled together a script that extracts relevant email-addresses from the attacking nodes' whois-entries and sends a notification to the relevant network admins and abuse-handling queues, and repeats the notification if nothing has changed after 24 hours.
As it turns out (and as you've probably guessed), that is an imprecise, incomplete and tedious approach. Imprecise because the email addresses gleaned from the whois entry don't always lead to the right network admin. Incomplete because notifications fail to arrive for a variety of reasons, be it that the whois-data is out of date or doesn't contain any contact information at all, or that the abuse-account has exceeded the allotted quota. Tedious because every single sent notification that does arrive somewhere in an abuse queue results in an automated response, filling my inbox with yet more messages that need to be carefully looked at before being moved to /dev/null — and because in some cases discussion ensues, and/or log entries have to be added to the supplied information. There must be a way to automate this battle against the bots, to leverage the fact that we all take similar steps to protect our machines.
So I would like to tap into the repository of wisdom that is slashdot, and ask: what can be done to combat Botnets?
Here's my vision: since we can't simply take compromised nodes off the net (for both technical and legal reasons), we should try to take the net off those machines. We need a directory of known compromised nodes, with a simple interface to submit current botnet activity, and one to update our hosts.deny file or our firewall rules, perhaps using a probability gradient. Is it possible to set up such a system so that it can't be subverted to be used as a DOS-vector? What are the legal and or ethical implications? How do we deal with dynamic IPs? What information can we make available to concerned network-admins? Whose reports do we trust?
Discuss"
Read More... 0 comments submission

+-   Poor security of UK wifi hotspots on Sunday November 01, @05:43AM Tasha26

Submitted by Tasha26 on Sunday November 01, @05:43AM
security
Tasha26 writes "BBC's Watchdog programme has an interesting investigation of the appalling state of Wifi security at Hotspots such as those found at coffe shops, burger places or even on trains. The video report shows live hacking minus the how-to, obviously, but you can see bits of linux shells (@1m08) and what appears to be Wireshark as tools used. The hack involved taking control email accounts of unsuspecting people to (1) send bogus emails as identity theft (@1m43) and (2) hijack email session so the user wouldn't be able to log out (@3m43). The programme carried out tests on UK's top 3 hotspot providers (BT Openzone, The Cloud and T-Mobile) and all revealed the same flaw. So people, be warned!"
Read More... 0 comments submission

+-   Former CEO charged with cyber attack on firm[->] on Friday October 30, @12:37PM alphadogg

Submitted by alphadogg on Friday October 30, @12:37PM
security
alphadogg writes "Khalid Shaikh, former CEO of YouSendIt, has been indicted by a grand jury on four counts of mail fraud after allegedly launching four denial-of-service attacks against the company's servers, the U.S. Department of Justice said. Shaikh allegedly used the ApacheBench software program to launch the DOS attacks against YouSendIt's servers between December 2008 and June, the DOJ said in a press release. Shaikh co-founded YouSendIt in January 2004 and served there as CEO and later CTO until November 2006. YouSendIt provides a service for sending and receiving large files over the Web."
Link To Original Source
Read More... 0 comments submission

Comments: 1 +-   Paid blacklist-removal? on Friday October 30, @09:31AM Forconin

Submitted by Forconin on Friday October 30, @09:31AM
spam
Forconin writes "I just checked one of my mailservers with the blacklist-tool found at http://www.mxtoolbox.com/ and noticed that it was listed in the backscatterer.org's blacklist. So i went to backscatterer and checked if it could be removed because i naturally don't want my mailservers listed in blacklists.

When i saw what i had to do to delist my server i was surprised, they actually charge 50€! to "express-delist" my IP, if i don't pay those 50€ the IP won't be delisted before 4 weeks has gone. How can anyone defend such a practice? Seeing that i haven't noticed any mailservers using backscatterer i'll just ignore it. But i have to ask slashdot, is this a normal practice? Have you ever experienced this before? What are your thoughts on people charging you money to remove you from a blacklist? Companies that send a lot of mail to people using mailservers that use the backscatterer-list will risk loosing money on this and as such be forced to pay up. Looks like bad practice to me.

Quote backscatterer.org:

This IP is temporary listed.
The listing will expire automatically and free of charge 4 weeks after the last abuse is seen from that IP.
Expedited manual expressdelisting is available as an option, in case you do not want to wait for the automatic and free expiration.
You will be charged 50 Euro's using one of the following payment services."
Read More... 1 comments submission
 
Recent reviews from Slashdot readers:

Submitting a review for consideration is easy; please first read Slashdot's book review guidelines. Updated: 2008114 by samzenpus

Slashdot Login

Log In

Create Account  |  Retrieve Password

Search
Anyone who has had a bull by the tail knows five or six more things than someone who hasn't. -- Mark Twain

All trademarks and copyrights on this page are owned by their respective owners. Comments are owned by the Poster. The Rest © 1997-2009 Geeknet, Inc.