Slashdot Mirror

← Back to Stories (view on slashdot.org)

Digital Thieves Use Ex-Employees Accounts

Posted by Zonk on from the thuggery dept.

prostoalex writes "The New York Times is running an article about a new generation of digital thugs. Using unsecured wireless networks, free e-mail accounts, a wealth of security knowledge, and, most important - employee passwords, thieves are getting access to valuable company databases. Once they're in, they start extorting the companies to pay up for them to leave. Otherwise phony e-mails to customers and sensitive information published publicly will lead to an embarrassment."

6 of 98 comments (clear)

  1. New Generation? by Manip · · Score: 5, Informative

    This was going on in 1996 and has been ever since so how is this a "New Generation"; the only thing that has changed between now and then is now we have more insecure WIFI networks but really that doesn't change how the game is played at all.

  2. D.D.O.S. by eltoyoboyo · · Score: 5, Funny

    "D.D.O.S. attacks are still one of the primary ways of extorting a company, and we're seeing a lot of that," said Larry D. Johnson, special agent in charge of the United States Secret Service's criminal division. "

    Heck, they talk like it is such a big deal to start a DOS attack. Just post an article like "Walla Walla school district to abandon FreeBSD and use Linux desktops" on slashdot, using your target's web site for the article location.

    --
    Have you Meta Moderated t
  3. Monologuing! by Anonymous Coward · · Score: 5, Funny

    It was then that the stalker made a series of mistakes. Among them, he began to brag. In an e-mail message titled "Fire them all," he informed Mr. Videtto that he had found valuable MicroPatent documents by going "Dumpster diving to the Dumpster and recycle bins located in a parking lot on Shawnee Road" in Alexandria, Va., where the company maintained a branch office

    From "The Incredibles":

    Syndrome: Oh, ho ho! You sly dog! You caught me monologuing!

    Ah yes, the evil cybervillain cannot resist the urge to pontificate about his supposed superior intellect and abilities to his victims. Of course, by doing so they reveal all kinds of details about their nefarious plans and give the victims time enough to escape or capture the idiot.

    Monologuing trips up the bad guy everytime.
    1. Re:Monologuing! by computerdude33 · · Score: 5, Funny

      Not just that, but it gives good people chances to catch the bad guy.

      Example:

      A guy starts monologuing for 10 hours. In that time, the police are able to:

      *Get info on him
      *Eat a donut
      *Google him
      *Eat a donut
      *Find out where he is
      *Eat a donut
      *Go to his house
      *Eat a donut
      *Break in
      *Eat a donut
      *Arrest him
      *Have a donut party

      --
      computerdude33's stuff: My blog of wonder.
  4. Not too likely to be an issue in the long run.... by King_TJ · · Score: 5, Interesting

    It seems to me that the people telling us how "Many times, companies just pay the hackers off to avoid embarassment." have little or no real facts to back up those claims.

    In other words, it's just sensationalist writing.

    In any nation with reasonably well enforced laws protecting a company's I.P. - I would think it's pointless for an extortionist to even attempt this. Sure, you might have the technical means to steal the proprietary info (especially if the company has unsecured or poorly secured wi-fi networks), but then what?

    Even the guy in this story got caught after unsuccessfully trying to scam money out of just one company. And today, it would seem to be much more difficult to get away with than it was even a few years ago. The government and law enforcement are getting more knowledgable about Internet-based crime all the time, and since 9-11, the U.S. at least has enacted more laws giving feds the ability to "spy" on net traffic and trace things back to their source.

    I really don't believe any legitimate business would think it made sense to pay some hacker millions of dollars in extortion money. This is MUCH more effective in situations like the one discussed in a Slashdot story a while back ... where someone threatens a denial of service attack on an online gambling/betting or porn site that's already running "beneath the radar" of legislation in nations that would prefer to shut them down.

  5. So Low!! by Anonymous Coward · · Score: 5, Interesting

    Only a few months ago I read from a respectable psychiatric source (and I wish I could find you a link right now) that more than 10% of those in 'political' life likely suffer from a form of narcassistic psychopathic personality disorder. NPD is one of the most frightening disorders when you really understand it, you actually have no core personality and understand youself only in a power relation to others whose behaviour defines your own. What we commonly call charismatic and charming people are more likely to be NPD sufferers. Politicians and confidence tricksters are commonly sufferers, rather than being 'clever' (NPDs are often marked by above average intelligence) they are deeply damaged. Many of those we hold in high regard as leaders and 'action' people are actually mentally ill, normatively speaking.

    If you have never heard of this I suggest you research it and you will be astonished how the symptom list fits the behaviour of so many public figures.