Slashdot Mirror

← Back to Stories (view on slashdot.org)

Undercover Hacking, For Money

Posted by timothy on from the nice-work-if-you-can-get-it dept.

Dollyknot writes: "Amusing story of a guy employed by IBM to check companies security out by trying to con his way onto their premises." This sounds like a fun job, to say the least, and supplies at least two good reasons to own a digital camera.

10 of 246 comments (clear)

  1. See also... by gmaestro · · Score: 5, Interesting
    The Happy Hacker has a cool account of a social engineering break-in on the website. I believe this is from Meinel's book Uberhacker in the chapter on Social engineering, including an actual break in to a fortune 500 company.

    as if i'm not paranoid enough!

  2. Some of his tactics aren't hard to employ at all. by thesolo · · Score: 5, Interesting

    At my last job, my boss was very slow in getting me an ID badge, even a temporary guest pass, so that I could swipe myself in. Employees should have one immediately, but it took him over 3 weeks to get me a temporary badge. So what did I do in the mean time? I snuck my way into the building, every day.

    For the first few days, I had security let me in, but they got real frustrated with checking me in. So every morning, I would park my car, get out, and start towards the side door, which happened to be closest to the IT department. I would then try to find someone who was walking towards that door and high-tail it behind them.
    If no one was going into the building at that time, I'd stop, pretend to take a phone call on my cell, or tie my shoes repeatedly, until someone walked past me, and then I'd just walk quickly behind them so they would hold the door for me.

    Not once during those 3 weeks did I ever get questioned by anybody, which surprised me greatly, especially considering I was about 20 years younger than anyone else at the company, and I have facial piercings.

    The moral of the story is that the overall trusting nature of humans is very easy to exploit, and this guy obviously shows off that point on a daily basis. Maybe we all should be a little more wary...

  3. Re:The ultimate dream job.. by Dyolf+Knip · · Score: 3, Interesting

    would be if a company were to pay to sabotage a competitor's web site. I suppose that whole illegal thing gets in the way. Alternatively, it sure would be nice to be paid to test a company's security

    I can imagine a scenario where two competitors that are on good terms with one another (or even two totally unrelated companies) might 'ritualize' assaults on one another's security. Set up rules, designate targets, award prizes to the team or individual that carries out the sneak, that sort of thing. It's fun and points out flaws in security. Much better than a lousy 'Employee of the Month' award.

    --
    Dyolf Knip
  4. My experiences in the Canadian Gov't by illusion_2K · · Score: 5, Interesting

    Although this article definetly shouldn't come as any surprise to anyone with even a marginal interest in information or any other type of security. Back in the day (early nineties), I was able to read loads of textfiles on all the local hacking BBS's about social engineering.

    Notwithstanding all of that though, it's kind of funny to see exactly how physical security is implemented these days. Back at my old job in the Canadian government (the department shall remain nameless), this stuff was nothing but a joke. Although you could certainly see that attempts were made at making things secure, like with the ID cards with the digital picture and magnetic swipe thing, it didn't really make much of a difference in the end. Firstly the only verification system that was used on these was to flash them at the rent-a-guards who sat all day long at the entrances. By this I mean that they would literally look at it for a split second - hardly enough time to even read the expiry date or even have a good look at the photo on the card. Case in point, after quitting, a friend of mine made a copy of his card on cardboard and was able to use that to get in without any trouble.

    Another strange thing was the departmental library. It was actually located within the building that I worked in on the second floor. Thus anyone (who knew about it) could walk up to the guards in the main lobby asking for access to it. They would then have to lend a piece of ID and write down their name, number, etc... and they'd get a library pass. This would essentially give them acccess to the entire building, as there wasn't any verification that they were sticking to the library. I ended up using this method of entry a few times to visit friends while I was at school in another part of the country.

    Anyway, I could rant on about it all night, but in the end it just came down to the fact that the people implementing the physical security were subcontracting to a bunch of dumbasses. Other things like network/information security were dealt with by intelligent and capable people for the mostpart, but I won't get into the whole weakest link discussion.

  5. www.infiltration.org by jimarndt · · Score: 3, Interesting

    the website is www.infiltration.org they haven't put out new issues for a well over a year now though. shame...great site.

  6. Tiger Teams by Repton · · Score: 3, Interesting

    If the Jargon File is anything to go by, this isn't exactly something IBM has only started doing recently.

    The entry on Tiger Teams provides the definition; the entry on patches gives the example story:

    There is a classic story of a tiger team penetrating a secure military computer that illustrates the danger inherent in binary patches (or, indeed, any patches that you can't -- or don't -- inspect and examine before installing). They couldn't find any trap doors or any way to penetrate security of IBM's OS, so they made a site visit to an IBM office (remember, these were official military types who were purportedly on official business), swiped some IBM stationery, and created a fake patch. The patch was actually the trapdoor they needed. The patch was distributed at about the right time for an IBM patch, had official stationery and all accompanying documentation, and was dutifully installed. The installation manager very shortly thereafter learned something about proper procedures.
    --
    Repton.
    They say that only an experienced wizard can do the tengu shuffle.
  7. Funny that it's IBM by joenobody · · Score: 3, Interesting
    I worked at IBM in Schaumburg, IL a year or so ago. They've got a huge data center called "IBM Global Services" or "AT&T Global Services" depending who you asked. Anyways, it was nice working there: light work and an internet connection that loaded pages about as fast as I could click links.

    Anyways, this building was almost totally insecure. They've got a bank of elevators with two entrances, north and south. In the day you can walk up to either, say that you're a consultant and forgot your page, sign a fake name and a random floor number and you're in. At night this isn't neccessary- they close one entrance and the sole guard is almost always napping. Reach over the desk to hit the door unlatch and there's a whole building full of computers awaiting you, with a loading dock you don't have to pass security to get to.

    I'm sure they knew this when I worked there: I showed up one day to find my monitor moved from atop my PC and the case ajar. I opened it up, and found that someone had taken all my RAM.

    --

  8. Re:Some of his tactics aren't hard to employ at al by NeMon'ess · · Score: 3, Interesting
    I've had fun getting into the main computer lab after hours at UC Berkeley. After it's dark, 7pm or so, everyone going in is supposed to have a key card. The elevators and stair shafts also need them. I don't even attend UCB but was wondering if my friend was in there that night when he wasn't at his apartment. The comp lab is on the second floor which is underground and has no cell phone reception. After I tailed in following a guy with a card. I wend to the elevator and went in. Going in is no problem, but to get it to move to your floor requires a card. I stood around for a minute, and then it moved. Although I hadn't usea a card, because some one else called the elevator, it went to their floor. All I had to do was act as though I was going to a different floor and wait until someone called the elevator to the second floor. With security like this, I don't think anyone malevolent will have the slightest problem getting in there anytime soon.

  9. Historical hacking at Stanford, KU by mesocyclone · · Score: 3, Interesting
    Back in 1968, I used to "borrow" Stanford Universities IBM 1620. At the time, I wasn't a student - in fact I was an active duty Navy flyer at nearby Moffett Field. But I wanted to hack and the base had a book on 1620 machine language.


    My approach was to go late at night, find a janitor, and tell him I lost my key. It worked every time - no ID required. I would then have the computer to myself for hours. One time, about 3 AM, a researcher (I assume :-) came in, saw me, apologized, and said he would come back when the machine was not in use. Being a nice guy, I told him I was done and let him have it.


    During that same year, I also used the Stanford IBM 360/67 (an OS with a VMM while Bill Gates was in grade school) to do a bunch of personal programming. There, an ID from an out-of-town for the year gard student did th job.


    Meanwhile, my friends at the University of Kansas (which had a rare GE-625), wanted source of the OS to improve their attacks on the OS. One of them found out the tape numbers by looking at printouts in a public place. He then ran jobs when times were busy to copy those tapes to his own... every once in a while so as to not draw suspicion. Then, he later printed out the whole thing, again in little bits. Thus when I later went there, we had source of the whole OS. We used that to find a number of holse, although GECOS-III was surprisingly well designed for security. In fact, the CIA used it for that reason, and it was chosen for the World Wide Military Command and Control System (WMMCS). As a result of our hacking, one of us later got a call, out of the blue, from a CIA recruiter who knew of the exploits and was looking to hire him for a white-hat hacking job. This was in 1970.
    Social engineering works!

    --

    The only good weather is bad weather.

  10. Damn reminds me of the good old days! by Telek · · Score: 3, Interesting

    I remember once, in high school, I was trying to hack around into our Novell 3.11 network that was connected to a WAN that had 22 high schools and about 180 elementary schools hooked up to it. (It was pretty sweet back then!). I had done all of the hacking from the library in open sight (I mean, a hacker wouldn't possibly do that, right? So mustn't have been one... ;P) and I made friends with the librarians as well. One day (after I learned of the 'server debug mode') I realized that if I could just get physical access to the server (which was in one of the rear librarian's only rooms) I'd be all good. So I just got up courage, and walked straight in! Walked up to the server, did the deed, walked back to my machine, logged in, returned to the server, removed the deed, stopped to say hi to one of the librarians on the way out and back to the computer, now logged in as Supervisor. Of course, because of really really stupid network admins at the board office, it was rediculously easy to get access to the master network at the board office as well. I ended up using a brute force password hacker and got 320 of 540 passwords, including 5 supervisor-equiv accounts. I ended up phoning up the head of the network admin at the board (who was rumoured to be a cool guy), got his voicemail and said "Hey, I think we need to talk. I'm such and such from such and such high school and I wanted to talk to you about network security. Please call me back here, and by the way, I hear that Greece is wonderful this time of year" (His password, of course, was "Greece"). Needless to say I got a phone call back pretty quickly saying "Hi. Let's talk."

    Ahhh, back to the good old days.

    --

    If God gave us curiosity