Honeynet Revealing Actual Phishing Techniques
edsonie writes "CircleID is reporting on the recent Honeynet Project, 'Know your Enemy: Phishing', aimed at discovering practical information on the practice of phishing. The study reports on a number of real world examples of phishing attacks and the typical activities performed by attackers during the full lifecycle of such incidents. The research also suggests that phishing attacks "are becoming more widespread and well organized". Also with regards to the speed of such attacks, "phishing attacks can occur very rapidly, with only limited elapsed time between the initial system intrusion and a phishing web site going online with supporting spam messages to advertise the web site, and that this speed can make such attacks hard to track and prevent." Check out the full report here presenting actual techniques and tools used by phishers."
Linux came in the mid ninetees. It was a project of three gay fat geeks students, namely Anus Torvalds, Anal Cox and Richard "Dick" Stallman. Anus, wanted their OS called Anux, a name that also pleased Anal Cox for sure, but Dick Stallman wasn't really happy and threatened not to have a bath anymore if they adopted that name. This threat immediately made Anus and Anal change their mind : given Stallman usually only washes once a month, they knew he was not lying ...
Instead, Dick Stallman wanted the OS to be called "Dinux, the dickhead OS", because he estimated many of the kernel wouldn't have existed if he hadn't first thought of it. Dick has always been an egocentric person, but Anus and Anal still wanted to please him, given he has always been pleasing them with his huge cock. So they kept the second letter "I" from his suggestion. They they went to bed and made love, that's why the first letter "L" was chosen.
So all in all, Linux is just a big story of love for unix, be happy :-).
this whole honeynet project seems really spooky to me and actually quite intrusive.
There seems to be an awful lot of people now jumping on the security bandwagon and offering security services, security auditing anti virus, anti spyware etc etc etc. I know honeynet have been around for a while and claim to be a no profit org, but who actually nominated to them to bait these people into acts of cyber crime ?
Baiting in law enforcement circles is an incredibly controversial subject, especially where things like potential sex offenders are concerned.
I'm not really sure I like the idea of honeypots to attract, spy on, record and potentially convict people.
The best way forward with all of these security maters IS education, not a pre-emptive style thought police roaming the net.
Personally I put honeynet's morals on about the same level as phishers.