Slashdot Mirror
Man Jailed After Using LimeWire For ID Theft
angry tapir sends along this excerpt from PC World:
"A Seattle man has been sentenced to more than three years in prison for using the LimeWire file-sharing service to lift personal information from computers across the US. The man, Frederick Wood, typed words like 'tax return' and 'account' into the LimeWire search box. That allowed him to find and access computers on the LimeWire network with shared folders that contained tax returns and bank account information. ... He used the information to open accounts, create identification cards and make purchases. 'Many of the victims are parents who don't realize that LimeWire is on their home computer,' [said Kathryn Warma of the US Attorney's Office]."
Man jailed for ID theft. This is a good outcome, I'd say.
The Limewire connection is only interesting because it shows social vulnerabilities inherent in the filesharing mechanism. As long as you make it simple to share files and folders, people are going to be lazy and end up sharing files that they never meant to share.
'Many of the victims are parents who don't realize that LimeWire is on their home computer,' [said Kathryn Warma of the US Attorney's Office]."
...shut down by The Man.
Do people not understand how file-sharing works?
Correct
The crime was using it.
Here's a moral equivalent:
Imagine of lots of people left the same forms on their car dashboard for all to see and parked their cars on the public streets. Then I walk along and write that info down in my notebook. So far, I haven't done anything illegal. Or I should say, if I have broken a law, then the laws are broken.
But once I use this information, particularly if I use it fraudulently, then I've committed a crime.
Knowledge is how to play a game, intelligence is how to win, wisdom is knowing what game to play.
I don't know how they couldn't. The thing is so bloated and slow, and degrades system resources so much, you'd think people would go "Hey, WTF is going on here?" Unless of course they already have tons of malware, and their private info has been lifted by half a dozen botnets already, in which case Limewire is probably the most secure network app they're running.
The world's burning. Moped Jesus spotted on I50. Details at 11.
This is outrageous! Our rights have been trampled on for the last time! We must rise up and fi....
Wait, wait, wait... are we /.ers for or against doing illegal stuff on P2P networks this week?
Sorry, between defending one illegal P2P activity (music "sharing") and condemning another (ID theft), it's hard to know what's what...
Tip: The mod point you're looking for is "-1 offtopic"
-William Brendel
I mean the guy should go for jail for it, no doubts there - but the fact that it can happen is the real issue that needs to be addressed.
I mean it's not the victim's fault, they probably don't even know what Limewire is, let alone how to use it or how it can be dangerous. It's not Limewire's fault, I mean any method they put in to prevent this will either detract from their service or will just spawn more problems.
And little Billy Downloady just put My Docs as the shared folder so his music goes into the music folder and the movies go into the movies folder. Having no idea that his parents happened to keep sensitive info in there.
I Guess the solution... Encrypt your Data regardless your situation?
Clearly using the information is wrong.
I don't think getting data from a folder someone has publicly shared is wrong.
And before someone uses that lame ass house analogy, it doesn't apply becasue that's not how computer communicate.
The Kruger Dunning explains most post on
Many people from older generations that have not had the time to learn how to use the computer aside from e-mail and online news have no clue. And computers aren't as static as we geeks like to think they are, and they slow down or speed up occasionally, install updates, etc.
For someone who has really no clue how it works and isn't even used to using it, it's very easy to see how they could not notice.
Wood was sentenced Tuesday to 39 months in prison and three years of supervised release for wire fraud, accessing a protected computer without authorization to commit fraud, and aggravated identity theft.
What chain of idiocy determined the computers he accessed to be "protected"?
Wood: Hey, do you have any files with names like this?
Computer: Yeah, I do.
Wood: Can I have them plz?
Computer: No problem - here they are for you.
Then why are these idiots letting their kids use their computer?.........No wait.......
That would be a very large debate. But hey, if "parenting" consists of "taking kids to daycare" and when they are older "taking kids to school" and when they are older "buying kids a car," it's no wonder they let their kids use "their" computer.
Yet another damn good reason not to let your kids have free reign on your computer that you also use for banking and filing your taxes.
the guy's sentence had nothing to do with limewire or even downloading. If he had downloaded said tax records for just a laugh, he would be free. He has been jailed for fraud pure and simple.
Don't we hate "X but on the internet" patent claims? Then why are "X with a very loose connection the internet" stories okay?
MMO Quests are like orgasms:
You may solo them, I prefer them in a group.
Frederick Wood: did he think passing off boxes of junk as computers would never fail?
First craigslist victim: you wrote a check without checking the product?
Prosecutor: what 'protected computer' was accessed? Do you have a different definition of protected?
ID theft Victims: what are you thinking putting sensitive information on a computer used by teenagers?
You're confusing ignorance with stupidity. Everyone is ignorant, nobody knows everything. Anyone who assails the intelligence of someone because they don't posess a certain bit of knowledge that they do is stupid.
Free Martian Whores!
Well, no, most people barely understand how their computer works at all. They can kind of drag their way through Windows, but only because they only need to access a few things and they've more or less memorised where to click for those things are. Move their icons around and suddenly it's a huge crisis for them.
Additionally, many households only have one computer. Mom and Dad use the computer sometimes, then little Susie gets on and installs Limewire, accepts all the defaults, and next thing you know, Mom and Dad's files are being shared with the world.
Or maybe the person is just clueless, and doesn't understand the concept of folders and directories. They want to share their music, their music is on the hard drive, they know the hard drive is C:, so that's what they share.
Really there are any number of reasons this could happen, either from sheer idiocy, to ignorance, to total accident. Back in the the day, 2001 or so, I used to search for things like "resume.doc", or random Windows DLLs, in Kazaa, then I knew who was sharing things they probably shouldn't. Then you could do "More files from this user," or whatever the option was, and come up with all kinds of interesting stuff. Never occured to me to search for tax returns, but then, I wasn't really trying to do anything malicious either. The point is that people sharing practically their entire hard drive, without even realising it, has been going on a long, long time.
mirrorshades radio -- darkwave, industrial, futurepop, ebm.
I'm still amazed how many people think it's a great idea to have their resume on their personal website, along with their date of birth, address and believe it or not I've actually seen people put their SSN on their resumes.
For a bunch of techies on Slashdot it's hard to understand. It's like a car mechanic saying, "How could you not know your valves needed adjusting by how the engine was running? Now your motor is destroyed" and the customer's answer is "What's a valve?" I bet the auto mechanic web forums are full of people laughing at the "dumb" end users of expensive, ruined machines.
There are a whole combination of technical details to know with file sharing - Windows shares, file system permissions, why you shouldn't run applications as admin by default, IP, port address translation (if you have a typical NATing home router). Even if you think you understand the software, how can you be sure you're 100% safe when you install software that's DESIGNED to open up your computer to the world?
I've posted on here a few times on this very topic, although I'm probably preaching to the choir. People are stupid like you wouldn't believe.
I've done this before, not for nefarious reasons but more as a proof-of-concept to convince myself that people really are this stupid.
Obviously I never did anything illegal – merely downloading the sensitive files isn't illegal AFAIK, since they're publicly sharing them (even if unknowingly). Attempting to log into someone's PayPal account (to see if the password had been changed or the account locked out) was probably somewhat borderline; I never tried to log into any of the credit or banking accounts. Most of the login details were no good, but I was able to log into people's e-mail accounts, several different instant messenger accounts, even a couple of RapidShare Premium accounts. (One e-mail account even appeared to be actively used – recent dates on messages, which I didn't read although I saw the subjects. As a gesture of helpfulness I sent an e-mail from the account to itself in which I informed them that their login details were being shared on LimeWire!)
So yes, this doesn't surprise me in the least.
Alexander Peter Kristopeit bought his basement from his mommy for one dollar.
No, they do not. Many people think that they are searching some sort of repository of files that was set up specifically to be searched. They do not realize that they are searching other people's hard drives, and other people are searching theirs. Even when they realize that people are downloading from them many people think that the downloading is restricted to music files. The idea that their entire hard drive may be open for searching is alien to some people.
Just because you are paranoid does not mean that no-one is out to get you.
Actually it is usually the children that install Limewire to get free music and video games. Most parents don't know what Limewire is, and share the computer with their children. When they notice a slow down on the Internet they think it is a virus or just Windows as usual. Not knowing that Limewire is sharing their "MyDocuments" folder including all of their personal documents and files in that folder.
My son, for example, uses a PC different from mine. So mine does not get infected with viruses or get all of the files shared via Limewire or some other program. But then I am Tech Savvy enough to know what Limewire and other file sharing programs are, and take them off of my system.
Remember, Slashdot does not have a -1 disagree moderation, and no, troll, flamebait, and overrated are not substitutes.
With all that crap in the MS system tray, it's a wonder anyone has any idea when new things appear on their machine.
Ze Atomic Device! It iz Ztolen!
Most parents know that being computer literate is an important part of their childrens' education. They probably bought the computer in the first place for their kids to use so they would learn more about computers than their forebears.
All generalizations are false, including this one. Mark Twain
Thank you for putting it in a way I could understand. I had no idea what this discussion was all about until you came along with a car analogy.
You may have a point, but i still don't see how they could get their bank records , because , by default Limewire only shares the 'Shared folder' .
So , they either put their bank records in the Shared folder , or they changed the settings to include other folders.
What i mean to say is : Limewire already put effort into making sure you don't accidentally share files .
That being said , considering the amount of junk you get when typing 'tax return' , i must admire the persistence of the identity thief.
Slipping shoelaces ?
I am ignorant and I do not know the difference between ignorance and stupidity. Although I know that your assailling of my intelligence because I do not posess this bit of knowledge makes you stupid!
Isn't slashdot great? You never know what you'll learn.
Free Martian Whores!
Then you'd best lock up Bill Gates and the Windows 95 development team, because it did pretty much the same thing.
The world's burning. Moped Jesus spotted on I50. Details at 11.
Being a computer tech. and mechanic, I can say yes, we do.
Along your theme, it's amazing how many cars have been brought to me in the last year by friends where a professional mechanic said it wasn't safe to drive, and presented with a quote of over $1,000 USD, just to find out that it was perfectly safe.
One in particular, I went item by item down the list of "repairs" only to find that it needed new spark plugs. The shop had completely overlooked the rack and pinion being worn beyond use (i.e., unsafe to drive), and the brakes leaking (i.e., unsafe to drive). They would have repaired their list, charged over $1,000, and handed back a death trap.
The real repairs were more than the value of the vehicle, and it now sits in a junk yard.
I've noticed that women are well targeted for these repairs, but it's not exclusive to them.
I went to have new tires mounted on my car. I generally do my own repairs, but I don't have a mounting nor balancing machine, so tires have to be done by a shop. I bring my own tires though. Last time I had two tires put on, they were very insistent that my front brakes were terribly worn. I thanked them for their advice, and picked up a new set of front pads on my way home ($35 vs $150). I did the front brakes at my leisure, just to find that the front pads weren't worn beyond 50%. Since I had already bought the pads, I went ahead and put the new ones on, and now the old worn pads (still 50% good) sit by my toolbox, in case someone needs them.
Shops love people saying "Fix whatever is wrong.". That's an open invitation to rape the customer. It's better to become aware of how your vehicle works, or make friends with someone who is honest. My friends will usually come to me first. Sometimes I'll send them back to the shop with the ok to do the work, but not usually. The last "urgent" brake job, I told the person to come back to me in 6 months or so, and I'd re-evaluate their brake condition. With all new parts (new pads, new rotors, per the shop quote), the price would have been $250 and a handshake. The shop wanted $1,500. I know they'll come back to me in 6 months because I'm honest.
My field is IT, but I've been working on cars for over 20 years. I don't charge for my work, but they always pay what they believe my time to have been worth, which has always been fair. It's a good way to make a few bucks on the weekends. :) It's not terribly regular work, but it's honest work for honest pay.
Serious? Seriousness is well above my pay grade.