Slashdot Mirror

← Back to Stories (view on slashdot.org)

Man Mines Facebook For Security Questions, Nabs Nude Photos From Email

Posted by timothy on from the oh-it's-that-easy-eh dept.

itwbennett writes "George Bronk, 23, has pleaded guilty to charges that he broke into the e-mail accounts of thousands of women, scouring them for nude photos that he then posted to the Internet. How he did it: He searched his victims' Facebook pages for answers to common security questions and then logged in to their e-mail accounts. In one case he persuaded a victim to send him even more explicit photographs by threatening to post the ones he'd stolen if she didn't. Bronk faces 6 years in prison on felony hacking, child pornography and identity theft charges."

31 of 257 comments (clear)

  1. Obligatory by Anonymous Coward · · Score: 5, Funny

    Pics or it didn't happen

    1. Re:Obligatory by ian_from_brisbane · · Score: 5, Funny

      Pics or it didn't happen

      Here you go... http://www.msnbc.msn.com/id/41082627/ns/technology_and_science-security/

  2. Think of the children too by Anonymous Coward · · Score: 5, Insightful

    Well, I sure hope all of the girls who took pictures of themselves got child pornography charges against them too.

    1. Re:Think of the children too by crow_t_robot · · Score: 5, Insightful

      No, because producing child pornography and distributing it on the internet is producing child pornography and distributing it on the internet. If a 16 year old girl sends a picture of her tits to your phone you are now in possession of child pornography and in direct danger of having your life destroyed and everyone you know hating you.

      This is akin to weaponry. This shit needs to stop.

    2. Re:Think of the children too by CAIMLAS · · Score: 5, Insightful

      You have very little imagination.

      Girls have boyfriends. They also have female friends. They are not solely keeping these pictures on their hard drives and cameras for personal use (more than likely).

      Funny thing about pictures on the Internet: they're trivially copied. Boyfriend copies the picture to his friends (or just one friend), or posts it to a forum: the picture is out, and will live forever on hundreds of 'porn agregators' (lacking a better term), presuming the girl isn't a skag. Likewise, girls are/can be catty: what's stopping them from spreading the nude pictures in a bitter attempt at becoming more popular themselves (thinking it would ridicule the origin)? We're talking about virally social teens, here, not top secret data on government networks: there's literally a thousand and one ways for such pictures to spread to the Internet At Large.

      So, in short: it's entirely possible that hundreds of thousands of men and women have viewed, downloaded, etc. child porn and not even be aware of the fact that it is child porn, simply on the basis of "some women look like children and some girls look like women". I recall a couple girls in high school who looked significantly older than 16-18 - and no, I'm not just talking about curves (though that applies too).

      It's just like "honest, I thought she was 18, officer!" scenario, except the evidence never disappears and the so-called 'victim' can never grant consent. I would not be surprised if there is legal child porn floating about the internet right now, on "valid" sites which the US federal law enforcement agencies knows about, but allow to exist -so that they can use it as an added charge for someone down the line, if they ned something to vilify them further/want to make sure the charges stick.

      --
      ~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
    3. Re:Think of the children too by Dunbal · · Score: 4, Insightful

      No I think OP was referring to the notion of a fair and balanced justice system that applied the law to everyone instead of the one we have now which consists of "lets throw everything we can dream up at the guy and see what sticks".

      After all, it wouldn't be the first time a teenage girl was accused of child pornography for taking pictures of herself and posting them online. Not that I agree with THAT one, either.

      --
      Seven puppies were harmed during the making of this post.
    4. Re:Think of the children too by Anonymous Coward · · Score: 5, Insightful

      Pictures of naked people should not be classified as porn simply because of the lack of clothes.

    5. Re:Think of the children too by Pharmboy · · Score: 4, Funny

      Pictures of naked people should not be classified as porn simply because of the lack of clothes.

      If God® wanted you naked, he would have made you born that way.

      --
      Tequila: It's not just for breakfast anymore!
    6. Re:Think of the children too by milkmage · · Score: 4, Insightful

      same thing that makes you a responsible drinker at 21

    7. Re:Think of the children too by Schadrach · · Score: 5, Insightful

      Actually, legalize possession of child porn, and step up the penalties for production (or just for child abuse, since using a child to produce child pornography is itself abuse) and purchase/sale. That removes the "weaponry" portion of child porn (if I send you a CP picture, you have committed a crime is a *bad* thing) and makes those who receive such pictures accidentally (mislabeled P2P files, for example) or against their will (as in the sending a picture to your phone example) more willing to openly provide them to authorities as a way to help the producers get caught, as well as making being involved in the financial promotion of the production of child pornography still a crime.

    8. Re:Think of the children too by Schadrach · · Score: 4, Interesting

      Interestingly enough, I've actually met a "slutty little girl" as you described it. She was a friend of one of my nieces several years ago. Girl was ~10, and was....precocious and direct. Very, very, direct regarding what men she found attractive and exactly what she wanted from them (or more specifically wanted them to do to her). It was actually really creepy. She moved a couple months after her and my niece started hanging out though, so I don't know what happened to her in the long run, or any real details as to her background.

      I'd never found a girl coming on to someone quite so disturbing though, before or since.

    9. Re:Think of the children too by witherstaff · · Score: 4, Interesting

      They're children unless they're being prosecuted, then they're usually adults. I don't get that double standard.

    10. Re:Think of the children too by Lord+Kano · · Score: 4, Interesting

      Actually, legalize possession of child porn, and step up the penalties for production (or just for child abuse, since using a child to produce child pornography is itself abuse) and purchase/sale. That removes the "weaponry" portion of child porn (if I send you a CP picture, you have committed a crime is a *bad* thing) and makes those who receive such pictures accidentally (mislabeled P2P files, for example) or against their will (as in the sending a picture to your phone example) more willing to openly provide them to authorities as a way to help the producers get caught, as well as making being involved in the financial promotion of the production of child pornography still a crime.

      Back in the early 90s, before the explosion of the web, I used to use AOL. I used to trade in pictures of naked women. Some guys used to send out pictures of their wives. I was 18-19 years old and had no interest in 35-40 year old housewives. I asked one guy if he had anything of someone "younger". Apparently that's a keyword for child porn. Next thing I knew I was getting inboxes full of the stuff, this was also back in the days before broadband so I had some people that I used to automatically share anything I got with before I downloaded it myself. On the first inboxing, I forwarded all of the contents to some of my trading partners. And THEN I downloaded the pictures and saw things that no normal person should ever have to see.

      I deleted the jpgs and gifs from my computer, deleted the emails from my inbox, and at that time AOL allowed you to unsend an email if it had not been read. I believe that I was able to unsend them all, but if I hadn't been, I shudder to think of the things I could have been charged with. All because I wanted to see naked 18-24 year old girls...

      LK

      --
      "Hi. This is my friend, Jack Shit, and you don't know him." - Lord Kano
    11. Re:Think of the children too by Anonymous Coward · · Score: 5, Insightful

      It's a US thing. Over there:
      - You're presumed innocent until proven guilty. Except for terrorism, in which case the rule is "If you were innocent, you wouldn't be a suspect".
      - Sexual assault is a horrendous crime. Except if the perpetrator is wearing a TSA uniform.
      - The Constitution stops the government from abusing it's authority and power. But only as long as the government agrees.
      - Infringing copyright on music steals copyright holders of thousands of dollars. Except for the music industry, they only steal 60 cents per song from artists.
      - Child Porn is illegal in order to protect victims of child abuse. Unless if children willingly make and send pictures of themselves, in this case they're not victims but vicious pedophiles. So vicious, they abuse themselves!
      - You're too young to drink beer at 21 but you're old enough to die for your country.

    12. Re:Think of the children too by JWSmythe · · Score: 4, Insightful

          Depending on the level of detailed dialogue you are describing, she may have been a victim of sexual abuse. They may have rationalized that the sexual abuse has positive results. For example, a bad adult does sexual acts, and then rewards the child. The child may associate the act with the result, and try to initiate the act with others for similar rewards.

          Most 10 year olds can't carry on an unsupported dialogue of sexual matters. For most (and yes, the average have has been growing younger), they simply have no interest. For others, they've had no exposure. Most (but not all) parents keep their children away from what they perceive as dangers for the childs development, which includes movie violence and sexuality. If the dialogue was beyond what you may see in a R or NC17 movie, you should consider that there is something pretty serious going on. Talk to a professional about it. Ask the simple questions, "This happened. Should I notify someone?" If you have school age children, a call to the schools child psychologist may be helpful, or your local child protective services. The child protective services call may start unwanted actions, but if there is something bad going on, they should definitely be involved.

          Most importantly, don't be involved. It's not up to you to investigate such things. Besides tainting evidence, being too involved can be bad for your health (i.e., the bad adult may seek to silence you). Leave investigations up to the experts. For the sake of your safety and mental health, it's better to give the anonymous tip, than to become a witness. If you get too involved, you may become a suspect, rather than just a witness.

      --
      Serious? Seriousness is well above my pay grade.
    13. Re:Think of the children too by bennomatic · · Score: 4, Interesting

      Of course, sometimes things can be misinterpreted. When I was in college, my girlfriend and I took a day off to help out her mother, who was a kindergarten teacher. We spent the morning reading to and playing with the little ones, and during the art part of the day, one little girl decided to confide in me that she and her father "do a secret dance when mommy goes to work."

      As you suggest above, I knew it wasn't my place to investigate, but that sounded pretty serious, so I told my GF's mother, who immediately went to the principal and school counselor, and they took the girl out to question her right away.

      In the retelling later, my GFM said that the little girl clammed right up, refused to talk, until finally, out of exasperation, she explained that her mother is a dancer at a club, and doesn't want her little girl to follow her career path, so she forbids her to dance. At all. But she (the little one) loves to dance, so as soon as mommy goes to work in the evenings, she and daddy put on a record and dance all over the house. Clothes on, no touching.

      I was soooo relieved to hear that it was nothing.

      --
      The CB App. What's your 20?
    14. Re:Think of the children too by Anonymous Coward · · Score: 4, Insightful

      What you said:

      Actually, legalize possession of child porn, and step up the penalties for production (or just for child abuse, since using a child to produce child pornography is itself abuse) and purchase/sale.

      What every politician and journalist in America would hear:

      ... legalize ... child abuse ...

      Sorry, but no penalty is going to be reduced. The only changes that are ever going to happen in the forseeable future will be increased penalties for whichever specific things are involved in the next few child abuse cases to hit the news. (Oh, you possessed child porn that was produced using a smartphone? That means you get an extra fifty years in jail, because clearly that's more of a deterrent than the 490 years you were already going to get.)

      We are no more able to have a rational and objective debate about child pornography than McCarthy was about communism, or the citizens of Salem about witchcraft. This is our generation's moral panic and it is not going to die until we do, so you'd better get used to it.

  3. Well, that will look grand on a resume by PolygamousRanchKid+ · · Score: 5, Funny

    Hobbies?

    • felony hacking
    • child pornography
    • identity theft

    Hell, yeah, you're hired!

    --
    Schroedinger's Brexit: The UK is both in and out of the EU at the same time!
    1. Re:Well, that will look grand on a resume by Haedrian · · Score: 5, Funny

      I see an executive director job at Facebook on the horizon.

  4. Re:Article in summary redirects by mountaineer76 · · Score: 4, Informative

    yeh, I got that too, re-directs immediately to a blog about some insurance company. Here's the printable link which doesn't redirect: http://www.itworld.com/print/133630

  5. Re:Security Questions Security Risk by Haedrian · · Score: 4, Funny

    "What's your mother's maiden name? - kashiqewnchkdhsflakjshflvkdsvhpexiojnasdjlna"

    But everyone calls her bob.

    Joking aside, I did that once for my steam account. Then I forgot the password, when I came to reset it it demanded my secret answer. Couldn't remember it. :(

  6. Re:Article in summary redirects by CrashandDie · · Score: 5, Interesting

    Indeed. It would appear ITWorld is vulnerable to a simple XSS comment post.

        <div id="comments">
            <div class="header">Comments</div>
            <div class="comment_links">
                <span class="num_comments"><a href="/comments/133630">1 comment</a></span>
                <span class="add_comment"><a href="/comment/reply/133630#comment-form">Add a comment</a></span>
            </div>
            <div class="comment content_item">
                <h3>(No subject)</h3>
                <META http-equiv="refresh" content="2;URL=http://swift-cars-insurance.blogspot.com/">
            </div>
        </div>

    Mountaineer76 provides us with a print version of the article which isn't affected, though.

    PS: WTF is it with Slashdot's broken support for paste? Trying to recreate the goodness of iOS 1?

  7. Re:Security Questions Security Risk by Dunbal · · Score: 4, Funny

    No asdfghjkl is your dad, idiot.

    --
    Seven puppies were harmed during the making of this post.
  8. Re:Article in summary redirects by macraig · · Score: 4, Informative

    The NoScript extension has an option on the Advanced tab, under Untrusted: Forbid META redirections inside NOSCRIPT elements. Do you have that option enabled? It's probably a key factor to whether NoScript blocks it or not.

  9. Re:Security Questions Security Risk by Lalakis · · Score: 5, Insightful

    I can't believe that no one blames the online services for requiring and using security questions as a security measure(!). This is such an insecure practice that I'm just baffled from the so much widespread use of it!
      Theoretically, security questions could be used as an ADDED security measure and be marginally effective at that, but in most times you can't know exactly how your answer will be used, so the sane response would be something like kashiqewnchkdhsflakjshflvkdsvhpexiojnasdjlna.

  10. Legal punishment calibration by dpilot · · Score: 4, Informative

    Evidently child pornography, blackmail, and breaking into thousands of women's email accounts merits punishment 6 times more severe than breaking into 1 woman's (Sarah Palin's) email account.

    --
    The living have better things to do than to continue hating the dead.
  11. Re:Security Questions Security Risk by Mathinker · · Score: 4, Interesting

    Why not try using the Linux/Cygwin command line?

      echo "mother's maiden name" | md5sum | sha1sum

    If you want to be fancy:

      (echo -n "string1" ; echo "string2" | md5sum) | sha1sum

    (P.S. For anyone foolish enough to think otherwise, I personally use a more sophisticated Python script for this, don't waste your time trying to break into my email using this "information".)

  12. Re:Imagine what Facebook is able to do if some dud by betterunixthanunix · · Score: 5, Informative

    That was, in fact, the first thing Mark Zuckerberg used Facebook to do: gain access to others' email.

    http://www.businessinsider.com/how-mark-zuckerberg-hacked-into-the-harvard-crimson-2010-3

    --
    Palm trees and 8
  13. Re:Security question by Peeteriz · · Score: 4, Insightful

    In that case, why not call it what it is, forget about the whole concept of security questions, and call it 'backup password', 'secondary password' or something like that?

  14. Think of the children laws. by 0100010001010011 · · Score: 5, Interesting

    In some states, the age of consent and child porn statutes have the same age limits.

    For instance, a quick read of NV law shows the AOC to be 16. Child porn is defined as sexually explicit blah blah blah involving a person under 16. Federal law makes it a crime with a person under 18, but there may be some state line/interstate commerce nexus that needs to be fulfilled.

    I didn't feel like looking at too many states, but found this same AOC/CP thing with NH-16/16.

    Many states forbid distributing/exhibiting obscenity to people under 18, regardless of their AOC/CP statutes.

    So, excluding the feds, it's not a crime to have sex with a 16 year old or film it. But, she can't watch the tape afterwards. It's a crime to allow her 16 year old friend to watch the act as it occurs, but not a crime to have her join. Neither of them can smoke a cigarette or have a beer afterwards. If either one were to rob,beat,kill one of their fellow particpants, they would be tried as an adult in every state in the country.

  15. Re:Reminds me... by tragedy · · Score: 5, Insightful

    Also, it would open up anyone fully consenting to massive repression by family. If they insist that it was consensual, in many cases, they'll receive counseling tantamount to brainwashing for years. There will be guilt trips and threats of excommunication from the family. She will be made to feel that, if she affirms her consent, she'll be releasing a monstrous sexual predator who will rape someone not so willing next time and she'll be to blame for that girls suffering, etc.

    I'm sure everyone here is familiar with the concept of "honor killings". It's not a phenomenon unique to Muslims as many people seem to think. It's a cross-cultural set of attitudes about the importance of a girls "virtue" and reputation and her obligation to her family and society in regards to it. In some places and among some people it's still taken to the extreme of murder for transgressions, but the exact same behavior, just to a lesser degree exists just about everywhere. I've met plenty of fathers of daughters of various ages in the US who are almost psychotically overprotective and who insist, in all seriousness, that their daughters have no sexual relations whatsoever and sometimes that they not date, etc. The behavior is always hypocritical with regards to their own behavior when they were younger and frequently their behavior as adults (with regards to enjoying pornography of young women, etc.). But they seem to view it as an obligation. Feeling protective of your child is, of course, not a shameful thing, but far too many tie such behavior to possessiveness and a form of objectification that denies their children their humanity.

    Society in general seems to at least subconsciously share these values. A young woman, whether above or below the various ages of consent/adulthood/etc. who expresses her sexuality in some way, especially publicly, has to be either a victim, or a slut. Generally there is no middle ground, and when there is, it's often given by people who think that she's both a victim _and_ a slut.

    So, an underage girl who chooses to have sex before her society says she's ready, whose older partner is arrested and who has a few years to decide whether to re-affirm consent or not, is going to have to spend that time under a lot of pressure. She will, essentially, have to decide whether to call herself a victim or a slut. Whether to be the dedicated family member protected from the outsider, or the prodigal child who shunned her families protection.