Slashdot Mirror

← Back to Stories (view on slashdot.org)

Feds Thwart Extortion Plot Against Best Buy

Posted by timothy on from the black-hat-size-extra-small dept.

hiero writes "From an article in the Star Tribune: 'Federal authorities said Tuesday they thwarted an extortion plot against Best Buy Co. Inc. by a man who sent the company an e-mail threatening to expose what he claimed were weaknesses in the retailer's computer system unless he was paid $2.5 million.' What's really interesting to me, though, is this paragraph further on in the article: 'The federal search warrant was obtained the morning of Oct. 24 and allowed the FBI, with Best Buy's cooperation, to use an Internet device known as an Internet Protocol Address Verifier. It contained a program that automatically sent back a response to Best Buy after the company sent a message to the e-mail address. The response allowed investigators to identify Ray as the sender of the e-mail threats, according to the government.' Internet Protocol Address Verifier? Is this Carnivore in action?"

36 of 942 comments (clear)

  1. I think... by Anonymous Coward · · Score: 5, Funny

    I think it's called a return receipt :-D Probably was using Outlook which automagicly sends one when requested.

    Blogzine

    1. Re:I think... by isorox · · Score: 5, Funny

      I do wonder about the sanity of our boss, who sends an all-employee email out (5 in the last two months) with a read receipt request. IIRC there's somewhere in the region of 20,000 employees.

    2. Re:I think... by Sivaram_Velauthapill · · Score: 3, Funny

      lol maybe he is trying to figure out how many people actually read his e-mail... and then fire the rest ;)

      Sivaram Velauthapillai

      --
      Sivaram Velauthapillai
      Seeking the meaning of life... @slashdot of all places ;)
    3. Re:I think... by thedillybar · · Score: 4, Funny
      Why does it have to be a 1 pixel transparent image? It might as well be a huge image that says "Dude, you're busted."

      By the time it starts loading, the damage is already done.

    4. Re:I think... by holstein · · Score: 2, Funny

      /me takes a moment to hug his Thunderbird.

      Why, are you in the extortion business?
    5. Re:I think... by nahdude812 · · Score: 4, Funny
      /me takes a moment to hug his Thunderbird.

      Why, are you in the extortion business?

      Ye... oooh, nice try feds! Almost got me on that one!
      --
      Slay a dragon... over lunch!
    6. Re:I think... by Ian+Wolf · · Score: 4, Funny

      Some would say that if you bought Office 2003, you've already been scammed. :-)

      --
      "The words of the prophets are written on the Slashdot walls."
    7. Re:I think... by x736e65616b · · Score: 1, Funny

      only on slashdot is something like this considered "low-tech".

      heh.

      -j

  2. No Wonder by PoitNarf · · Score: 5, Funny

    That's what happens when you try to extort a big company using Outlook.

    --

    "0101100101? It's just jibberish. *looks in mirror, gasps* 1010011010@!? AHHHHHH!!"
  3. Internet Protocol Address Verifier ... by Anonymous Coward · · Score: 4, Funny

    sounds so much better than "ping"

  4. It all makes sense now! by graveyardduckx · · Score: 1, Funny

    Best Buy and the Feds are working together! So that's why I have to return 90% of the hardware I buy from Best Buy!

  5. Note to extortionists... by Black+Parrot · · Score: 4, Funny


    Make sure you turn off Message Disposition Notification in your e-mail client.

    --
    Sheesh, evil *and* a jerk. -- Jade
  6. Just do not let by katalyst · · Score: 2, Funny

    the Internet Protocol Address verifier get into the hands of the RIAA.. we would not want more 12 yr olds and college students being fined ridiculous amounts, would we? :D

    --
    |/________
    |\A|ALYS|
  7. Re:Web bug (Handy for job application e-mails) by Rosco+P.+Coltrane · · Score: 5, Funny

    A top tip (tm) is to embed a web bug in a job aplication e-mail. Its interseting to watch your aplication being pushed around various departments and see who actually reads it.

    Yes, it's very interesting. For example, here's the log of all the machines who accessed my web bug when applied for a job at the DHS:

    frontdesk.dhs.gov
    hr.dhs.gov
    check.dhs.gov
    ch eck.ins.gov
    check.irs.org
    it.dhs.org
    counterter rorism.dhs.org
    legal.dhs.org
    submitsubpoena.aol. com
    bust.usmarshals.gov
    brb 2 secs, someone's at the door...

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  8. Re:Verifier by random_rabbit · · Score: 2, Funny

    You can send HTML letters? COOL! Are you beta-testing electronic paper or something? I'd love to get my hands on some of that.

  9. Re:If he had used spammer techniques.. by Anonymous Coward · · Score: 2, Funny

    hate to bite but 7. ??? 8. Profit!

  10. Wait until he actually received the payment ... by Anonymous Coward · · Score: 5, Funny

    Imagine his surprise when he received a $2.5 million Best Buy Gift Card in the mail. Doh!

  11. Re:U.S. government surveillance by Anonymous Coward · · Score: 5, Funny

    Somehow, this power accumulation and surveilance (sic) reminds me of Senator Palpatine. I just hope I'm wrong.

    Huh. It reminded me of Stalin and Beria and the NKVD, but you're right, better we should take our lessons from space opera than from history.

    In Imperial Coruscant, history takes lessons from YOU!

  12. Re:IP Address Verifier == web bug by azaris · · Score: 3, Funny

    Methinks that would be marketing speak for an HTML mail with a web bug (1x1 transparent pixel image loaded from remote server). If the 'villain' is using a mail program that displays HTML, his IP address is logged.

    The villain didn't of course use any mail program but some generic webmail address (most likely outside the US). The lesson? Use Lynx to read your webmail when extorting Best Buy.

  13. Re:If you break in to someone's system by quonsar · · Score: 5, Funny
    My house has many known security flaws. The largest would be the windows.

    hey! just like my computer!

    </obligatory karma whoring>

    --

    Sacred cows make the best burgers.

  14. As opposed to... by gosand · · Score: 4, Funny
    That's what happens when you try to extort a big company using Outlook.


    As opposed to a big company who tries to extort us to use Outlook?

    --

    My beliefs do not require that you agree with them.

  15. Belongs on America's Dumbest by salesgeek · · Score: 5, Funny

    Here are three ways to get on America's Dumbest:

    1. Rob Taco Bell right after filling out job appication and interview. Be arrested when cops show up at your address on the application.

    2. Send extortion/blackmail emails using MS-Outlook from your normal ISP account. Be busted when FBI sends email using marketing tool like Neighborhood Email or eZine Manager. FBI is too embarassed to admit they used an e-newsletter tool and come up with the "ip address verifier" device.

    3. Shoplift naked. Be arrested when cop identifies the incredibly stupid butcher's meat chart tatoo when streaking through campus on a dare.

    4. Keep crack pipe, crack and lighter in glove box. Be arrested when you see a billboard advising "Drug checkpoint next exit" and begin throwing crack, lighter and pipe out the window while police are video taping looking for people throwing drugs and paraphanellia out the window.

    --
    -- $G
    1. Re:Belongs on America's Dumbest by liquidsin · · Score: 2, Funny

      5. Add fourth bullet to list of "three ways to get on America's Dumbest". Forget to change title of said list to reflect addition of new bullet.

      --
      do not read this line twice.
  16. Re:What are you supposed to do? by halo8 · · Score: 2, Funny

    1... Post the website and sample URLs on favorite tech site ala' slashdot
    2... wait
    3... PROFFIT

    --
    The More Knowledge you have the Luckier you Get- J.R. Ewing
  17. Its good, we have no need for privacy. by Adolph_Hitler · · Score: 2, Funny

    We need as big and powerful of a government as possible. Higher taxes, more police, more spyware, more surveillance. Thats the whole goal the republican party isnt it? Well Mission Accomplished. Next time I'm voting Libertarian (Ex-Republican)

    --
    People don't exist to serve systems, systems exist to serve people.
  18. A great use for Internet Protocol Address Verifier by Anonymous Coward · · Score: 3, Funny

    Can we use it to trace and arrest those bastards that send out 'pay us $699 for Linux' extortion letters?

  19. Re:Please Think Before Exposing Paranoia by __aagmrb7289 · · Score: 4, Funny

    Oh no! The FBI doesn't want to investigate little Jimmy being extorted for his lunch money on the playground at school? What is this world coming to?

    This example of the counter-"point" is brought to you by the citizens for people thinking first before typing. Thank you.

  20. you owe me by batlike · · Score: 2, Funny

    for a new keyboard - i was happily drinking my milk and reading /. when as I made my way across yours post, inexplicably it all came out gushing through my nose -

  21. Re:Uhh... by Ayaress · · Score: 3, Funny

    Also, it wasn't everywhere, just certain idiot stores, apparantly. Imagine the disappointment of all the hackers out in the parkinglot who couldn't get any credit card information at the one here in Saginaw.

  22. Re:However, a bug says: "you're being bugged" by Anonymous Coward · · Score: 1, Funny

    I agree. In fact, I routinely turn off html in my web browser. I prefer to read the unrendered markup language.

  23. Re:Internet Protocol Address Verifier? Pfft... by The+Evil+Couch · · Score: 2, Funny
    Damn, I should have checked that "post anonymously" box

    He should have, too. :p

    --
    The World's Worst Webcomic!
  24. Re:IP Address Verifier == web bug by Anonymous Coward · · Score: 1, Funny

    Come on man, this is /. We all know everything better than anybody else. So we all know what happened.

  25. I know what he was doing by puppet10 · · Score: 3, Funny

    I bet he was just trying to get his rebate money from them.

    --
    -------- This space intentionally left blank --------
  26. I FOR ONE by BasharTeg · · Score: 1, Funny

    I for one, welcome our new FBI overlords!

  27. internet protocol address verifier source code by puzzled · · Score: 2, Funny



    ping -l 666 -n 666 special.host.at.bestbuy.com

    fsckin' DUH!

    Canivore for the feds? I'm starting an open source project to hold my valuable IPAV app's intellectual property and I'm going to call it Moronivore ... look for slashdot coverage soon.

    It *is* a troll, but its clever - please mod up :-)

    --
    I am very easy to get along with, but I don't have time to waste being nice to people who are being stupid. -Theo
  28. Here is the IP Address Verifier source code by Tor · · Score: 2, Funny

    I managed to get a hold of the source code for the internet address verifier. Here goes:


    #!/bin/bash

    usage()
    {
    [ "$1" ] && echo "$0: $*" >&2
    echo "Usage: $0 " >&2
    exit 1
    }

    [ "$1" ] || usage "You must supply the criminal's email address"

    email=$1
    domain=${email##*@}
    mxname=$(host -t mx "$domain" | sed -ne 's/.* \(.*\)/\1/p')
    mxaddr=$(host -t a "$mxname" | sed -ne 's/.* \(.*\)/\1/p')
    netblock=$(whois "$mxaddr"|sed -ne 's/[^(]*(\([^)]*\).*/\1/p|tail -1)
    netowner=$(whois "$netblock")

    echo "Your next step is to issue a subpoena against the following party - probably an ISP."
    echo "They need to give you the current user of the IP address $mxaddr."
    echo "(This may very well point back to the same ISP)."
    echo "This party, in turn, must turn over the identity of the email account ."

    echo "$netowner"