Slashdot Mirror

← Back to Stories (view on slashdot.org)

Leaks Prove MediaDefender's Deception

Posted by ryuzaki0 on from the well-lookie-there dept.

Who will defend the defenders? writes "Ars Technica has posted the first installment in their analysis of the leaked MediaDefender emails and found some very interesting things. Apparently, the New York Attorney General's office is working on a big anti-piracy sting and they were working on finding viable targets. It also discusses how some of the emails show MediaDefender trying to spy on their competitors, sanitize their own Wikipedia entry, deal with the hackers targeting their systems, and to quash the MiiVi story even while they were rebuilding it as Viide. Oh yes, they definitely read "techie, geek web sites where everybody already hates us" like Slashdot, too."

8 of 230 comments (clear)

  1. there are more leaks! by wwmedia · · Score: 5, Informative

    there are more leaks!

    MediaDefender Phone Call and Gnutella Tracking Database Leaked

  2. Journamalism 101 by jalefkowit · · Score: 5, Interesting

    I know it's pointless to ask things like this of the /. "editors", but the summary of this story is almost completely useless to anyone who is coming to the story cold (like me).

    Would it have killed someone to have rewritten the submission so that it explained:

    • Who MediaDefender is
    • What the "leaked MediaDefender emails" are
    • What the "MiiVi story" is
    • Why I should care

    ?

    I can go Google all that stuff and find out for myself, but why would I bother, if it's not clear to me why the story is important in the first place?

    --

    Read my blog.

    1. Re:Journamalism 101 by ZachPruckowski · · Score: 5, Informative

      MediaDefender is a company that the RIAA and MPAA hire to pollute Bittorrent trackers with fake torrents, track torrent usage, and spew false data out to torrents.

      A group called "MediaDefender-Defender" got someone's password and spilled thousands of emails from within MediaDefender. Apparently some idiot forwarded all his corporate mail to Gmail, and used an easy password.

      "MiiVi" was an attempt by MediaDefender to create a fake file-sharing site to entrap people. About two people fell for it, then they were exposed by Torrentfreak.

      You should care because this company lied about its involvement with an attempt to "entrap" (legally, it's not entrapment, but it's still pretty morally grey). You might also care because it's another attempt by the RIAA and MPAA to screw over file-sharers. Or maybe you don't care about it. There's no assurance that you'll find everything on Slashdot interesting.

  3. Re:A lesson from this episode by radarjd · · Score: 5, Insightful

    It is a bit sad that many of these incidents do not figure in the mainstream media - which seems to be in the powerful grips of these Corporate thugs. While it's possible that some corporation may be exercising some undue influence, it seems just as likely (if not more) to me that people simply don't care. Have Sony's CD sales been hurt by the rootkit incident? (And I mean on a meaningful level, not anecdotally.) Has Microsoft lost business from its anti-trust issues? Those have certainly received a great deal of media attention, but the greatest portion of the public seems not to care.
  4. Re:Mixed feelings... by lanswitch · · Score: 5, Insightful

    Most businesses are in the business of making money, bottom line
    and at the bottom line you'll only find the bottom feeders.

  5. Re:Mixed feelings... by badenglishihave · · Score: 5, Informative

    I do find it funny that people will be paranoid about GMail now... the only reason these MediaDefender-Defender guys got in is because they knew the password. Perhaps GMail is more insecure than other email providers; however, afaik they didn't hack into his account, they just found out his password from another site and used it to log into his email. Not exactly GMail's fault.

  6. Re:Totally Unprofessional by JRHelgeson · · Score: 5, Interesting

    But in professional, corporate email communications such a tone has about as much justification as surfing porn at work.

    And to that point - it is their JOB to surf porn at work, to seek out child porn and notify the DoJ and the New York Attorney General's office of the material so that the AG could pursue the offender as part of their own investigation.

    Yet, I do agree that the use of profanity does show a lack of professionalism. Much like the theory that you can tell a lot about a man by the way he treats his waitress. These emails reveal that they have an air of arrogant superiority about themselves, that they operate above the law, and that they are immune from "teh bad d00dz". They are convinced of their moral authority and moral superiority.

    To wit:
    I have a fair level of certainty that they got themselves infected with spyware, adware, trojans. They surf sites in the dark corners of the 'intertoob' seeking out nefarious content, evil trackers and child predators. In going there, they are in the stomping grounds of the best of the worst when it comes to infecting computers using the most current 0day exploits.

    (Side note -- Stick with me here)
    I personally do not run anti-virus. I deal with malicious content all the time. I know what is running on my machine at all times. If I were to run an AntiVirus, it would delete half the files on my hard drive that was gathered as evidence in investigations, or malicious tool kits used to exploit systems that I use in teaching classes.

    Whenever I venture to evil sites, I start up a virtual machine, I have two - they are called "Hindenburg" and "Titanic" that are not current on their patches and run no anti-virus. I purposely seek out infections and malware on these machines so I can analyze the machines postmortem. I have a tremendous amount of respect and even admiration for my opponents. They are VERY good at their game. As such, I am careful not to let my guard down.

    (My point)
    I'll bet that what they've done is get a real machine infected, one that was not sandboxed, connected to the internal domain, and the user was running with not just local admin privileges, but with full domain admin privileges. OOPS! This infected machine reported back to the hackers, who then connected back in to their hacked box and set up user accounts on the network and also rooted the boxes.

    At this point, no amount of changing passwords or firewalls or IDS will get the intruders out. They need to rebuild every box on their network, from scratch. They need to stop thinking of themselves as an "academic institution" that needs full access to the internet (no outbound restrictions on the firewall) and where proper security practices "don't apply to them".

    Proper security and safety protocols were not followed. The arrogant attitude of "we're security folks, policies don't apply to us" is what let this happen.

    Further your affiant sayeth not, :)
    Joel Helgeson
    --
    Good security is based upon reality and common sense. Common sense is a function of having common knowledge.
  7. Re:No attempt to get comments from the AG's office by bjc23 · · Score: 5, Informative

    The WSJ got a 'no comment' from the NY AG ( http://www.moneyweb.co.za/mw/view/mw/en/page94?oid=161203&sn=Detail ). The AG's case was definitely related to child porn; not piracy.