Slashdot Mirror


Hacker Leaks Unreleased CERT Reports

Call Me Black Cloud writes "A hacker calling himself "Hack4Life" swiped 3 unpublished vulnerability reports from a company working with CERT and posted them to the Full Disclosure mailing list. A couple of days later, he did it again (while promising weekly leaks). Wired also has a story, including a link to one of the postings."

8 of 336 comments (clear)

  1. A little bit ironic by OptimizedPrime · · Score: 5, Funny

    Its a little too ironic if he's using the leaks in the reports he steals....

    1. Re:A little bit ironic by yoni003 · · Score: 5, Funny

      heh..these vulnerability reports shouldn't be so vulnerable

    2. Re:A little bit ironic by jd_esguerra · · Score: 5, Funny

      What will be really ironic is if he gets hacked to pieces in prison for protecting his own back-door. Once the guys in prison looking for "root access" portscan him, I bet they'll waste no time compromising his socket. Yep. I'm sick. And bored.

  2. Coffee by webword · · Score: 5, Funny

    I drink too much coffee. I leak several times per day.

  3. Re:FD and Bugtraq by RLiegh · · Score: 5, Funny

    and can put up with the occasional flame war ...

    I don't think any regular readers of slashdot fit that discription.
  4. A modest proposal by kuhneng · · Score: 4, Funny

    Store the Windows vulnerabilities on a Windows server, Linux vulnerabilities on a Linux server, etc.

    That might take the edge off some companies' complaints about vulnerabilities leaking out before the clock is up.

  5. Re:I would agree, but... by Shanep · · Score: 4, Funny

    "I'm going to release these at 7pm on Friday, so that sysadmins don't know about this and can't do anything about this til Monday morning" (paraphrased).

    What I'd like to know, is what real sys admin is NOT glued to multiple consoles at 7pm on a Friday?

    That's about the start of the week when real work can get done!

    --
    War crimes, torture, lies, illegal spying... Would someone give Bush a blowjob, already, so he can be impeached?
  6. localhost? by Kaa42 · · Score: 4, Funny

    Hum, look at the references section

    ...
    6. http://www.kb.cert.org/vuls/id/192995
    7. file://localhost/XDR.html#vendors
    8. http://www.kb.cert.org/vuls/id/516825
    ...

    localhost!? They're obviously already using the vulnerability to put files on my computer.

    --
    .oO Kaa Oo.