Slashdot Mirror

← Back to Stories (view on slashdot.org)

Indictment Highlights File-Sharing Risks

Posted by CowboyNeal on from the careful-what-you-share dept.

Bomarc writes "Via the KOMO-TV website, an article from the Associated Press about how Gregory Thomas Kopiloff used Limewire, Soulseek and other peer-to-peer file-sharing programs to troll other computers for financial information, which he used to open credit cards for an online shopping spree, according to a four-count indictment unsealed in US District Court on Thursday. The news article isn't big on details, but it does outline the risks with peer-to-peer file-sharing programs."

12 of 86 comments (clear)

  1. Filesharing isn't a risk by Anonymous Coward · · Score: 5, Insightful


    however poorly configured software is, wether its MSIE or OpenSSH or SMB if they are poorly configured you will get bitten

    anyway this smells like another "OMG p2p teh evill!!!" anti-p2p propaganda

    1. Re:Filesharing isn't a risk by Apatharch · · Score: 2, Insightful

      however poorly configured software is, wether its MSIE or OpenSSH or SMB if they are poorly configured you will get bitten

      anyway this smells like another "OMG p2p teh evill!!!" anti-p2p propaganda

      Precisely. Preventing personal data from leaking onto P2P networks is simply a matter of proper configuration of the client. As the summary states, there's very little detail in the article about how the information was actually accessed; all that would be required is a few pointers to help people prevent the sharing of sensitive files, but TFA seems to be following the fear-mongering route instead with quotes like "If you are running file-sharing software, you are giving criminals the keys to your computer".

      And then, right at the end, we have:

      Kopiloff also obtained some sensitive information the old-fashioned way, from associates who would steal mail or go "Dumpster diving" for discarded financial records, the indictment said, adding that he would open credit accounts and then go shopping online

      Who wants to bet that a more significant proportion of the information came from that source?

    2. Re:Filesharing isn't a risk by rucs_hack · · Score: 2, Informative

      I'm in Audible...

  2. Well if you going share C:\ expect bad things. by woodchip · · Score: 2, Insightful

    (n/t) DUH.

  3. My way by Anonymous Coward · · Score: 5, Funny

    c:\credit-info.goatse.cx.jpg
    Get's em every time.

  4. Search for 'Resume' by 0100010001010011 · · Score: 4, Interesting

    An old Kazaa trick I used to entertain myself back in the day. Mainly to see what NOT to do on a resume, but you could get pretty adequate information from them. Some people included birthday, SSN, other stuff that should never be on a resume.

    Fun times.

    1. Re:Search for 'Resume' by langelgjm · · Score: 3, Interesting

      Yeah, we used to do this on a college file-sharing network. We'd search for files that were on the root of the drive, like "io.sys", and find all the people who were sharing their entire hard drives. Then we'd root through their documents and find compromising pictures of them and make fun of them in the main chat, usually followed by the advice "STOP SHARING YOUR ENTIRE DRIVE."

      There was also a correspondence between assigned IPs and the different dormitories, which was apparently easy enough to figure out, with the result that the ops often freaked out new users by telling them where they lived.

      --
      "Anyone who [rips a CD] is probably engaging in copyright infringement." - David O. Carson
    2. Re:Search for 'Resume' by 0100010001010011 · · Score: 3, Interesting

      I forgot about this one. We had a student at my first university that put up a search engine for the network. Twice a day it'd ping all the computers on campus (1600 students, maybe 800 living on campus) and then store the results in a database.

      It was just a 'dumb' spider so it went everywhere it could.

      jpg would turn up 'private' party pictures. doc's would turn up Resume's and homework solutions... those were the days.

      And we did the same thing you did. Anyone sharing everything would get a nice desktop text file "README". /Anyone remember searchtree?

  5. It outlines something... by Anonymous Coward · · Score: 3, Insightful

    But not the risk of file-sharing. It outlines the risk of not knowing what your doing. Same could be said about just about everything.

  6. P2P isn't the danger for your security by Opportunist · · Score: 2, Insightful

    Cluelessness is. Plain and simple. Operating something that can potentially compromise your personal and private information without even having the foggiest idea what you're doing is stupid.

    Unfortunately, exactly that conclusion is very hard to understand by stupid people.

    Don't want to learn? No problem. Nobody is forced to be "on the internet". Nobody is being forced to put their private information into their computer. You can live without either.

    But don't blame technology for your stupidity. Do you call your car dangerous and evil if you're too stupid to see the difference between the funny things down there that ruin your shoes (aka pedals)?

    Just to get a car analogy into it again...

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
  7. try .tax by Chapter80 · · Score: 5, Informative
    In April, it's fun to search the file sharing networks for ".tax" files (and other common files used for tax returns by Turbo Tx, Taxcut, etc.)

    I would never recommend viewing such information or committing any crimes, but it's interesting to see one IP address with tens or hundreds of tax returns shared. If you hire an outside tax preparer, be aware!

    Imagine - your SSN, name, address, a list of banks that have paid you interest, a list of stocks that you own, your taxable income and amount of tax paid (which the IRS uses as proof that you are who you say you are, if you perform an online inquiry), etc.

    And the victim doesn't even realize that their PAID PREPARER is sharing the information with the world! No lie! There are hundreds available every April!

    PS, Don't try to call any of the individuals and tip them off - they have a tendency to shoot the messenger!

  8. Filesharing is a great way to backup stuf!! by Rexdude · · Score: 2, Funny

    1) zip Backup.zip ~/stuff
    2) mv Backup.zip ~/Kazaa/share/Britney&ParisDoAHorse.mpg
    3) ??
    4) Profit!!

    --
    "..One hosts to look them up, one DNS to find them, and in the darkness BIND them."