Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Security Crime

Stanford Researcher Finds Little To Love In Would-Be Hacker Marketplace 75

An anonymous reader writes: What if there were an Uber for hackers? Well, there is. It's called Hacker's List, and it made the front page of the New York Times this year. Anyone can post or bid on an 'ethical' hacking project. According to new Stanford research, however, the site is a wreck. 'Most requests are unsophisticated and unlawful, very few deals are actually struck, and most completed projects appear to be criminal.' And it gets worse. 'Many users on Hacker's List are trivially identifiable,' with an email address or Facebook account. The research dataset includes thousands of individuals soliciting federal crimes.
This discussion has been archived. No new comments can be posted.

Stanford Researcher Finds Little To Love In Would-Be Hacker Marketplace

Comments Filter:
  • In other news (Score:2, Redundant)

    by CaptSlaq ( 1491233 )
    Grass is green, sky is blue, water is wet. More at 11.
    • Grass is green, sky is blue, water is wet. More at 11.

      I CAN'T WAIT UNTIL 11! TELL ME OTHER OBVIOUS THINGS NOW!

      • Re:In other news (Score:4, Informative)

        by timholman ( 71886 ) on Thursday May 21, 2015 @01:14PM (#49745235)

        Grass is green, sky is blue, water is wet. More at 11.

        I CAN'T WAIT UNTIL 11! TELL ME OTHER OBVIOUS THINGS NOW!

        Your dog loves you. But that cute girl down the street? She just wants to be friends.

        • What about her dog? How does it she feel about me?

          • Re: (Score:3, Funny)

            by Anonymous Coward

            Her dog is in to you. But that cute girl down the street? She won't let you have sex with her dog.

            • Her dog is in to you. But that cute girl down the street? She won't let you have sex with her dog.

              Yet another example of FEMINISTS interfering with my freedom of expression. My grandfather fought in the war to protect our freedom, and now we let SJWs take it away, piece BY piece in the name of POLITICAL CORRECTNESS!.

              Literally Hitler. THANKS Obama.

    • Yeah... thinking the same thing. Without some sort of participation or backing from established researchers and vendors, this was pretty much a non-starter.

    • Grass is green, sky is blue, water is wet. More at 11.

      Now that I think about it, none of those are true in the literal sense. And you probably mean "More at 23" unless you want the wrath of the non-Americans.

      • by Anonymous Coward

        Nobody gives a crap what the whiny bitch Euro's think of how we keep time.

        Least of all that annoying Greek guy.

      • by mjm1231 ( 751545 )

        Grass is green, sky is blue, water is wet. More at 11.

        Now that I think about it, none of those are true in the literal sense.

        That sentence is only true if words literally don't ever mean anything. Which may be literally true, but is useless. I'm going to go on pretending that they do.

        • by ceoyoyo ( 59147 )

          It's true in that those universal statements aren't universally true. Grass isn't green in the winter here, it's brown. The sky is blue outside my window currently, but yesterday it was gray. There's an awful lot of water around here that isn't wet during the winter.

          • It's true in that those universal statements aren't universally true. Grass isn't green in the winter here, it's brown. The sky is blue outside my window currently, but yesterday it was gray. There's an awful lot of water around here that isn't wet during the winter.

            And don't forget it's all a hologram inside a computer anyway, so let's all just kill ourselves and escape the Matrix.

          • Grass isn't green -- it just absorbs red and blue light. And the sky refracts white light, letting through blue. And even so, "red," "green," and "blue," and "wet" are human created constructs. In an absolute sense, there's no difference between water and air and dirt; they're all made up of the same stuff. Holy shit, that means we can turn lead into gold! I'll be back -- gotta alchemize my fortune.
            • by ceoyoyo ( 59147 )

              We have a "human construct" called "green" that most of the human construct "us" pretty much agree upon. The human construct "grass" sometimes meets this criteria, and sometimes doesn't. If you truly believe that, in an absolute sense, there's no difference between water, air and dirt, I can suggest some experiments you might wish to conduct that are likely to convince you of the folly of that statement. You're right, they are made up of the same stuff, but arrangement of that stuff is rather important.

              P

    • by nyet ( 19118 )

      "It is a fair summary of constitutional history that the landmarks of our liberties have often been forged in cases involving not very nice people." - Supreme Court Justice Felix Frankfurter

    • Grass is green, sky is blue, water is wet. More at 11.

      Not in California. Although the sky here is blue and cloudless, the grass is brown and there is no water.

  • You would think a website offering hacking services would protect the identity of it's users. What a scam.
  • by Anonymous Coward

    Ugh. "Uber for X" sort of made sense for startups selling services where people drive out and perform small tasks for you. This is not that.

    • Ugh. "Uber for X" sort of made sense for startups selling services where people drive out and perform small tasks for you. This is not that.

      well you're going to love my startup. Oober lets you crowdsource a person to call for your Uber for you. Oober's like Uber for Uber!

      • by Barny ( 103770 )

        Are you providing an API? If so, I could make a startup that caters specifically to people on the go! It will Uber Oober, to contact Uber, so you don't have to!

        Called Youber, it is a person-centric service for modern professionals who just don't have time to Uber for Uber.

  • Hmmm ... (Score:5, Interesting)

    by gstoddart ( 321705 ) on Thursday May 21, 2015 @12:59PM (#49745111) Homepage

    Shady stuff on the intertubes? I'm shocked I tell 'ya.

    There's really only one question: is the owner aware that his site is being used for illegal stuff, or has be willfully made sure he isn't aware.

    Because TFA sure as hell makes it sound like it's pretty blatantly being used for illegal stuff ... and then it's just a matter to which the owner is consciously facilitating this.

    So, which is it ... clueless that your site is being used to break the law? Or intentionally not noticing that your site is being used to break the law?

    Hacker's List "is intended for legal and ethical use." And, according to the owner, "[n]o one is going to complete an illegal project through my website."

    How about "i need hack account facebook of my girlfriend," completed for $90 in January? Or "need access to a g mail account," finished for $350 in February? Or "I need [a database hacked] because I need it for doxing," done for $350 last month?

    That does not sound like a site which is in any way policing itself to be a legal operation.

    Not even a little.

    • I'm trying to think of some kind of legal hacking that I would want a pseudo anonymous third party to do for me. When it comes to legal hacking I can't think of much that a private individual would need and an enterprises would do so internally or hire a reputable security company before they would use a pseudo anonymous individual.

      • Well, and then extend the metaphor to real world things and it gets even harder to understand.

        Need access to your neighbor's house? Someone else's car? A safe?

        Yes, you would totally go find a pseudo-anonymous entity to help you get into those things, because that's how those things are normally done. No, wait, it completely isn't.

        But suddenly hacking into Facebook, or GMail, or a database (so you can use it for doxxing) .. and someone can claim to have a legal business facilitating these transactions? I

        • You could probably consider some security auditing and penetration testing to be legal hacking given it takes place on your private network and is looking for existing exploits to patch. I doubt there is enough call for that on a private level and corporations aren't going to farm that out on a site like this and from TFA it isn't what is being bid on.

    • There's really only one question: is the owner aware that his site is being used for illegal stuff, or has be willfully made sure he isn't aware.

      As a guess, he thinks he's being clever, like a lot of people who end up in prison for psychopathically profiting from breaking the law.

  • by jtara ( 133429 ) on Thursday May 21, 2015 @01:09PM (#49745193)

    Who openly posts solicitations to commit a Federal crime, while positively identifying themselves through social media?

    The same people that Liberty Mutual doesn't want going around driving three-quarters of a car, that's who!

    What will those clueless Millennials do next?

  • by Anonymous Coward

    What makes anyone think this might not be an FBI honeypot, or at least monitored in detail by the FBI and NSA.

    • If anyone thinks the FBI and NSA aren't monitoring in detail, they're a total moron. The FBI is known to monitor things much less criminal and obvious than this, and the NSA is watching by default even if they didn't mean to in the first place.

  • Is a (US) "federal" crime any worse than other crimes? For example, murder is generally a state crime.

    Suggestion: use "felony" instead...

    • Well, the fairly obvious answer is that if it's a federal crime, then federal resources will be the ones going after you and won't need to care about state jurisdiction.

      For a felony you would not necessarily get the feds turning their resources to you.

      So, in terms of which agencies will be coming after you, and with what resources ... pointing out that you'd be violating federal law says you get a whole different class of people coming after you.

      Federal crimes may not be worse, but the magnitude of who is i

    • In the U.S. a federal crime is worse because you end up going to a federal pound-you-in-the-ass prison.
    • by jtara ( 133429 )

      Internets cross state lines, and so there is Federal jurisdiction. Only the state in which the crime is committed (which can be ambiguous here) would have an interest, and state law in this case would typically be less specific.

      You're implying that the author meant to make the crime seem more serious by their use of "Federal". I don't make that assumption. They just accurately stated the likely jurisdiction and who would likely investigate and prosecute.

    • Ask Dzhokhar Tsarnaev,

      he would not be facing death row if it was a state crime.

    • by ceoyoyo ( 59147 )

      If you drop the (US), then quite often. In Canada the maximum punishment for a provincial crime is two years less a day. Anything more serious than that is federal.

  • Wait 'till he sees craigslist! Yikes!

  • by Anonymous Coward

    Any serious hacker wouldn't even get out of bed for these prices.

  • by antiperimetaparalogo ( 4091871 ) on Thursday May 21, 2015 @01:19PM (#49745289)

    'Most requests are [...] unlawful [...]' And it gets worse. 'Many users on Hacker's List are trivially identifiable,' [...] The research dataset includes thousands of individuals soliciting federal crimes.

    "worse"? You mean "better"!

  • by Anonymous Coward on Thursday May 21, 2015 @01:50PM (#49745487)

    is laughing at this

  • Can we stop calling common criminals for hackers? Some of us are starting to get really offended, to the point we wonder how anyone of you ever made it out of grade school. Maybe the word you were looking for was "cracker"? rtfm.
    • Sorry grandpa, but the term crackers has had nothing to do with computers for at least 30 years. Like it or not but "hackers" has taken its place. Now, what ever happened to script kiddies?
      • by evilrip ( 713562 )
        "Script kiddies" really only fit a subset of malicious "hackers", if you must. These "skiddies", as we call them, typically abuse tools written by hackers or amateurs for one purpose or another. These people are mostly without programming talent. The fact is that most experienced hackers know what power they wield, understand how much work goes into the r&d stage(playing around, etc.). While i personally never agreed with calling them crackers(a great disservice to many great software crackers out the
      • by evilrip ( 713562 )

        Sorry grandpa, but the term crackers has had nothing to do with computers for at least 30 years. Like it or not but "hackers" has taken its place. Now, what ever happened to script kiddies?

        30 years ago I was still many years away from having cognitive memory, and as I don't even have a kid, I don't see how I can be grandpa. you look kind of ignorant tho. :)

  • an FBI honeypot trap. Yes, come to the site, ask for people to do illegal things...send them some $, have the FBI show up at your door.

If all else fails, lower your standards.

Working...