Slashdot Mirror

← Back to Stories (view on slashdot.org)

FBI Solves Mystery Surrounding 15-Year-Old Fruitfly Mac Malware Which Was Used By a Man To Watch Victims Via their Webcams, and Listen in On Conversations (zdnet.com)

Posted by msmash on from the mystery-solved dept.

The FBI has solved the final mystery surrounding a strain of Mac malware that was used by an Ohio man to spy on people for 14 years. From a report: The man, 28-year-old Phillip Durachinsky, was arrested in January 2017, and charged a year later, in January 2018. US authorities say he created the Fruitfly Mac malware (Quimitchin by some AV vendors) back in 2003 and used it until 2017 to infect victims and take control off their Mac computers to steal files, keyboard strokes, watch victims via the webcam, and listen in on conversations via the microphone. Court documents reveal Durachinsky wasn't particularly interested in financial crime but was primarily focused on watching victims, having collected millions of images on his computer, including many of underage children. Durachinsky created the malware when he was only 14, and used it for the next 14 years without Mac antivirus programs ever detecting it on victims' computers. [...]

Describing the Fruitfly/Quimitchin malware, the FBI said the following: "The attack vector included the scanning and identification of externally facing services, to include the Apple Filing Protocol (AFP, port 548), RDP or other VNC, SSH (port 22), and Back to My Mac (BTMM), which would be targeted with weak passwords or passwords derived from third party data breaches." In other words, Durachinsky had used a technique know as port scanning to identify internet or network-connected Macs that were exposing remote access ports with weak or no passwords.

111 comments

  1. APK Hosts File Engine for MacOS... apk by Anonymous Coward · · Score: -1

    It's here! APK Hosts File Engine 1.0++ 64-bit for MacOS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r M a c O S . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 MacOS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + redirect poisoned or downed DNS/botnets/malware downloads/malcript/email malicious payloads... apk

    1. Re: APK Hosts File Engine for MacOS... apk by Anonymous Coward · · Score: -1

      How can we trust that "APK Hosts File Engine" doesn't contain similar malware? APK seems incredibly sketchy.

    2. Re: APK Hosts File Engine for MacOS... apk by viperidaenz · · Score: -1

      APK Host File Engine leaves you completely vulnerable to this malware. Do not trust it!

  2. Queue Mac ... by CaptainDork · · Score: 1

    ... attack.

    --
    It little behooves the best of us to comment on the rest of us.
    1. Re:Queue Mac ... by Anonymous Coward · · Score: 0

      Back to My Mac

      Mac was young and impressionable system from California, waiting to get penetrated hard. With the ports open and vulnerable by default, the danger of abuse was clearly in the Air.

    2. Re:Queue Mac ... by mrvan · · Score: 1

      When fruitflies get MAC addresses we know this whole Internet of Things is going too far!

    3. Re:Queue Mac ... by CaptainDork · · Score: 1

      I see what you did there.

      --
      It little behooves the best of us to comment on the rest of us.
  3. Linux/BSD/Pop!_OS version available, too... apk by Anonymous Coward · · Score: -1

    See subject: APK Hosts File Engine 2.0++ 64-bit for Linux/BSD/Pop!_OS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 Linux/BSD/Pop!_OS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + ads/trackers/botnets/malware downloads/malcript/email malicious payloads... apk

  4. Fudgepacka msmash by Anonymous Coward · · Score: -1

    Another ewtarded jummblded stewpeesd headline

  5. APK Hosts File Engine for MacOS... apk by Anonymous Coward · · Score: -1

    It's here! APK Hosts File Engine 1.0++ 64-bit for MacOS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r M a c O S . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 MacOS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + redirect poisoned or downed DNS/botnets/malware downloads/malcript/email malicious payloads... apk

  6. Linux/BSD/Pop!_OS version available, too... apk by Anonymous Coward · · Score: -1

    See subject: APK Hosts File Engine 2.0++ 64-bit for Linux/BSD/Pop!_OS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 Linux/BSD/Pop!_OS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + ads/trackers/botnets/malware downloads/malcript/email malicious payloads... apk

  7. What do you charge him with? by techno-vampire · · Score: 2

    Judging from TFS, he was just the cyber equivalent of a peeping tom. And, if he was only 14 when he started, I don't know if you could really call him a pedofile if the pictures were of girls his own age.

    --
    Good, inexpensive web hosting
    1. Re:What do you charge him with? by Anonymous Coward · · Score: 1

      Charge, anything we can think off. "Computer hacking" since it's conveniently not defined in the law, "misuse of an electronic device", "unauthorised access of a protected computer" (there was a password, no matter how weak), and a handful of others on the technical side.

      And surely we most certainly can charge him with sexual misconduct, stalking, child abuse, producing child porn (minor in the view and taking screenshots, anyone?) and whatnot else. He's 28 now, and we'll just conveniently forget the pictures are 14 year old themselves by now too.

      Also "mail fraud" for no apparent reason. There's always mail fraud.

    2. Re:What do you charge him with? by Anonymous Coward · · Score: 5, Informative

      >Judging from TFS, he was just the cyber equivalent of a peeping tom.

      Hardly.

      2. During his more than thirteen years of accessing protected computers without the appropriate authorizations,
      Defendant accessed protected computers owned by local, state and federal governments, a police department, schools, companies and individuals.
      3. Defendant developed computer malware later named "Fruitfly" and wrote variants capable of infecting computers running macOS and Windows operating systems.
      4. Defendant installed the Fruitfly malware on thousands of computers ("Fruitfly
      victims").
      5. The Fruitfly malware gave Defendant the ability to control a Fruitfly victim's computer by, among other things, accessing stored data, uploading files to a Fruitfly victim's computer, taking and downloading screenshots, logging a user's keystrokes and turning on the camera and microphone to surreptitiously record images and audio recordings.

      Read the rest of the indictment here: https://www.justice.gov/opa/press-release/file/1024116/download

      I don't know what the guy's job is now, but after he gets out of prison I'm thinking the CIA may want to hire him.

    3. Re:What do you charge him with? by Anonymous Coward · · Score: 5, Interesting

      Age does not matter when it comes to pornographic images of minors. There have been people under 18 who have gotten in trouble for sexting pictures of themselves, which is technically production & distribution of child pornography.

    4. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      Defendent executed in prison... no apparent reason.... case closed.

    5. Re:What do you charge him with? by BlueStrat · · Score: 1

      What do you charge him with?

      Acting as if he were an agent of a US TLA engaged in domestic intelligence operations.

      Only US TLAs are authorized to snoop on US citizens within the US without warrant or probable cause and store the data. /s

      Strat

      --
      Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
    6. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      Which, IMO, is a bit of hysteria built right into the law.

      Pedophilia (alternatively spelled paedophilia) is a psychiatric disorder in which an adult or older adolescent experiences a primary or exclusive sexual attraction to prepubescent children. It is not to be confused with hebephilia or ephebophilia.

      I'm not saying all three should be okay, I'm saying the three are different and ought to be treated as such.

      And anyway, if you can't have an interest in 14 year old girls when you're a 14 year old boy, then how do you grow up? Is that why the USoA is so full of immature idiots? Someone ought to've caught this guy back then and sent him out to meet people in person.

    7. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      To get technical, that word doesn't apply at all when talking about 14 year olds, so let's just refer to him by a broader term such as "sick fuck."

      To me, all this demonstrates is that AV software is a bad joke and it reinforces that Macs aren't secure unless you take steps to make them that way.

      I've seen comments talking about how the CIA might want to recruit this guy, and I agree. He's straight up CIA material, given that he has no issue exploiting children and he's demonstrated an ability to break into systems and remain undetected for well over a decade, which is impressive under almost any circumstance.

    8. Re:What do you charge him with? by jago25_98 · · Score: 1

      The damage is not clear. Are you saying that the malware installed weakens the systems to further attack?
      I'm not swayed by that lazy socially manipulative paedo b.s.

      This a very valid concern! The crime here is very heavy on thought and less on actions. If we are prosecuting people for thoughts not actions then we're really screwed.

      Why not highlight how the victim felt when they found out? That's a real effect and that has to be focussed on.

      --
      A blog I run for the wealth
    9. Re:What do you charge him with? by alvinrod · · Score: 2

      There's an assumption in there that all of the images, videos, or other material of underage individuals was something that he captured decades ago. I'm not going to pretend to have a good understanding of this person. Most people don't write malware to infect thousands of different individuals, so this guy is probably somewhere outside of our understanding in some ways. I'm also not sure what being able to spy on people all of the time from age 14 does to a person's mind and how it might affect development. Even if you somehow started out "normal", I think that might warp a person a little bit.

      Also, most 14 year old boys are interested in older women, not 14 year old girls. At that age we were trying to get a Playboy to look at naked women, not naked girls. Of course when you're 14, adult women want absolutely nothing to do with you, so you have to settle for someone your own age. But if you're still interested in 14 year old girls after 18, there may be something wrong with you or you might be developmentally stunted in some way.

    10. Re:What do you charge him with? by NicBenjamin · · Score: 1

      Keep in mind that 14-year-old girls have gotten in legal trouble for sending nudes of themselves.

      Se yes, if he's gotten pictures of people under 18 naked, he's gonna be charged with child porn.

    11. Re: What do you charge him with? by Anonymous Coward · · Score: 0

      Also, most 14 year old boys are interested in older women, not 14 year old girls

      That is a load of pure horseshit. Just because you had a "thing" for your mother doesn't mean the rest of us did.

    12. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      Geez, dude, I gave you the link to read the indictment for yourself. It answers your questions. do your own homework.

    13. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      Yes, but, theoretically, *ethically* what is the judgment... All else aside

    14. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      Reminds me of NetBus or Sub7 for Windows back in the day.

    15. Re:What do you charge him with? by ArchieBunker · · Score: 1

      This is the best reply I can think of. https://i.kym-cdn.com/photos/i...

      --
      Only the State obtains its revenue by coercion. - Murray Rothbard
    16. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      I think the problem lies with him not having an EULA...If he had one of those he would be facebook!

    17. Re: What do you charge him with? by drew_kime · · Score: 2

      That is a load of pure horseshit. Just because you had a "thing" for your mother doesn't mean the rest of us did.

      No, I definitely had a thing for his mother.

      --
      Nope, no sig
    18. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      I dare you to look up some nudist websites...they have naked children on them...their own children! No child porn for them! I was aghast when I saw it. It is completely legal in the "right" context I guess....

    19. Re:What do you charge him with? by angel'o'sphere · · Score: 1

      But if you're still interested in 14 year old girls after 18, there may be something wrong with you or you might be developmentally stunted in some way.
      Depends how mature the 14 year old is. I had my first "real girlfriend" with 15, and she was 14. If I had been 18 I had chosen her anyway, why would I not?

      And no, I never really was interested in "older woman" (I assume you mean around 20, for a 16 year old?) but my math teacher and one of my music teachers was "kinda hot" :D

      Young people like to bond together, also for sex. And a 4 years difference is not that uncommon, even if the people are young.

      And, outside of the US, it is completely legal that a 14 year old has sex with an 18 year old. And over 18, the other partner needs to be 16. An arbitrary gap ... yes.

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
    20. Re:What do you charge him with? by Megol · · Score: 1

      But you quoted something that IMO reinforce the idea that this was just a digital peeping tom instead of someone out for financial gain or the like.

    21. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      I don't know if you could really call him a pedofile

      You could call a jpg on his computer that.

    22. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      and we'll just conveniently forget the pictures are 14 year old themselves by now too

      Now wouldn't that be convenient if the pictures automatically came of age with their subjects. But careful what you wish for there, remember Dorian Gray.

    23. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      girls

      How do you know? TFA doesn't mention gender. Statistically underage Mac users were overwhelmingly more likely to be boys 15 years ago.

    24. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      More like the cyber equivalent of a person who breaks into your house, turns on all your electrical devices, the peeps on you and steals your information.

    25. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      most 14 year old boys are interested in older women

      Older women's wishful thinking. When I was a 14 year old boy I was interested in boys aged ~12 to 15. Most other boys I knew were definitely interested in girls, not older women.

      But if you're still interested in 14 year old girls after 18, there may be something wrong with you

      Age of consent is not a constant. By conflating legislation with psychology you're implying that a sane person becomes mentally ill just by crossing a border, by having a birthday or by some state changing a law as they have done multiple times.

    26. Re:What do you charge him with? by hipp5 · · Score: 1

      JAnd, if he was only 14 when he started, I don't know if you could really call him a pedofile if the pictures were of girls his own age.

      Might not make him a pedo (at the time; but he would be now), but it IS still child porn.

    27. Re:What do you charge him with? by fuzznutz · · Score: 1

      Of course when you're 14, adult women want absolutely nothing to do with you, so you have to settle for someone your own age.

      Boy have you not been paying attention. Hardly a week goes by without some teacher somewhere who gets caught with her hands in the till. I suppose it's fair given the hysteria over men in the past decade.

    28. Re:What do you charge him with? by DaFallus · · Score: 1

      No, the true hypocrisy comes when these people under 18 who send pictures of themselves are charged with producing and distributing child porn, as an adult.

      --
      No one cares what your captcha was

      Houston TX, USA
    29. Re:What do you charge him with? by Anonymous Coward · · Score: 0

      BackOrifice!

  8. CaptainDork = fake name massive human fail by Anonymous Coward · · Score: -1

    See subject: Your MASSIVE FAIL in this life is you're nothing more than a chattering little do-nothing "ne'er-do-well" online & you know it...

    * Is that the best your "phantasyland FAKE NAME" (for your fake lie of a so-called 'life') can manage?

    When a FAKE NAME do nothing like YOU does better than I have? Then talk (you're all talk & no action)...

    You can't help you're an immature little BUTTHURT no-mind, lol! I blew you away in TONS OF PLACES and easily dust your no-mind bullshit blatherings.

    APK

    P.S.=> The TRUE PRICE of your UNIDENTIFIABLE FAKE NAME do-nothing selves like you that I can ALWAYS CASH IN ON (lol) is that I can use FACT/TRUTH on them to SHATTER their all TOO fragile delusional egos that they actually know A DAMN THING in computing, lol... apk

    1. Re:CaptainDork = fake name massive human fail by Anonymous Coward · · Score: -1

      How do you type all that with your own fist up your ass.

      I realize it is a tiny fist, but inserted far up there.

    2. Re:CaptainDork = fake name massive human fail by CaptainDork · · Score: 1, Troll

      Well, shit.

      I was going to match you IQ for IQ and say that your momma wears combat boots, but these days that's a compliment.

      I want to express my "thanks," to all the moms who have served, are serving, and will serve, while wearing combat boots.

      --
      It little behooves the best of us to comment on the rest of us.
    3. Re:CaptainDork = fake name massive human fail by Megol · · Score: 1

      What about those that serve without wearing combat boot? And why you "thanks" and not your thanks?

    4. Re:CaptainDork = fake name massive human fail by CaptainDork · · Score: 1

      Swoosh

      --
      It little behooves the best of us to comment on the rest of us.
  9. APK Hosts File Engine for MacOS... apk by Anonymous Coward · · Score: -1

    It's here! APK Hosts File Engine 1.0++ 64-bit for MacOS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r M a c O S . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 MacOS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + redirect poisoned or downed DNS/botnets/malware downloads/malcript/email malicious payloads... apk

  10. Linux/BSD/Pop!_OS version available, too... apk by Anonymous Coward · · Score: -1

    See subject: APK Hosts File Engine 2.0++ 64-bit for Linux/BSD/Pop!_OS h t t p : / / a p k . i t - m a t e . c o . u k / A P K H o s t s F i l e E n g i n e F o r L i n u x . z i p

    Yields more security/speed/reliability/anonymity vs. any 1 solution (99% of threats use hostnames vs. IP address most firewalls use) more efficiently/FASTER + NATIVELY 4 less!

    Vs. "Bolt on 'MoAr' illogic-logic" slowing you hosts speed u up 2 ways: Adblocks + Hardcode fav. sites u spend most time @ vs. competition loaded w/ security bugs (DNS/AntiVir) + overheads slowing u (messagepass 'souled-out' to advertisers easily detected & blocked addons + firewall filtering drivers) & their complexity leads to exploitation!

    * ONLY 1 of its kind in GUI 4 Linux/BSD/Pop!_OS!

    (Better vs. Windows model in speed/efficiency/merge)

    APK

    P.S.=> Protects against Spectre & Meltdown + ads/trackers/botnets/malware downloads/malcript/email malicious payloads... apk

  11. Re: Linux/BSD/Pop!_OS version available, too... ap by Anonymous Coward · · Score: -1

    Who the F is this? This is gold!

  12. One wonders if others used this by Streetlight · · Score: 1

    By others I could imagine some of those three letter federal government agencies use this software or other functionally like it to keep an eye on us in the name of national security. Cover up your camera and computer microphone, folks. I'm not sure your phone would be vary useful without the microphone, though.

    --
    In a time of universal deceit, telling the truth is a revolutionary act. George Orwell
    1. Re:One wonders if others used this by AHuxley · · Score: 2

      Some news on the Mac functionally
      OSX/FruitFly
      https://objective-see.com/blog...
      "New Mac backdoor using antiquated code"
      https://blog.malwarebytes.com/...

      --
      Domestic spying is now "Benign Information Gathering"
  13. THINK DIFFERENTLY! by Anonymous Coward · · Score: 1

    Oh shit. No! stop! Oh god wtf is wrong with you!

  14. WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: -1, Troll

    He was 28(?) when he was arrested, and they found the pedophilia evidence, so yeah, you could call him a kiddie porn pedophile unless you wanted to defend him for some reason as "just a peeping tom" as if that's ok either. Weird.

    1. Re:WHY are you APOLOGIZING for a PEDO? by Opportunist · · Score: 4, Insightful

      Do you know where the data you had 14 years ago is? Every single HD you ever owned, every single CD you ever burned? Can the hysteria, please.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    2. Re: WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      Wow you must be into some really questionable shit for you to ball so hard for this guy. Hint- the majority of the time he has been at this, he has been a legal adult.

    3. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 2, Informative

      He was producing cp up until last year when he was arrested.

      ged and incorporated by reference as if fully set forth herein.
      15. From on or about October 25, 2011 through on or about January 14, 2017, in theNorthern District of Ohio, Eastern Division, and elsewhere, Defendant PHILLIP R.DURACHINSKY did use a minor and minors to engage in sexually explicit conduct, as defined in Title 18, United States Code, Section 2256(2), for the purpose of producing a visual depiction of such conduct, knowing and having reason to know that such visual depiction would be transported and transmitted, using any means and facility of interstate and foreign commerce, and in and affecting interstate and foreign commerce; such visual depiction was produced and transmitted using materials that had been mailed, shipped and transported in and affecting interstate and foreign commerce; and such visual depiction was actually transported and transmitted, using any means and facility of interstate and foreign commerce, and ...

    4. Re:WHY are you APOLOGIZING for a PEDO? by angel'o'sphere · · Score: 1

      When I was 14, hardly any floppy existed. A hard drive costed more than your car and CDs definitely did not even exist as a wet dream of a research lab assistant.

      But I get your point ... my stupid parents most surely have a naked pic of me when I was 7 or 8 or 10 playing at a Baggersee. Or god forbid: even younger!!!

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
    5. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      I can go back 22 years for hard drives images with data on, before that it is hit and miss but most "data" that was on floppy or zip drives I've also extracted.

      Honestly, storage is so cheap these days I just buy two extra drives every couple of years and make a giant copy of all my old crap, + the drive(s) I'm upgrading from to one of the drives, clone it to the other one and stick one of them in an offsite safe and one in a little sealed fireproof safe on the shelf..

    6. Re:WHY are you APOLOGIZING for a PEDO? by Opportunist · · Score: 1

      Is this a verdict or accusation?

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    7. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      It's totally unclear what he actually did. Did he mail these kids porn, or have it pop up on their screens, and then film them whacking off? It's hard to engage in sexplicit conduct with somebody who is not supposed to know you're in their computer.

    8. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      When I was 14 I hardly ever had a floppy either

    9. Re: WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      3.5" is a standard size, though some have 2.5".

      We don't let this limit us though -- despite the physical sizes remaining unchanged for years the capacities have been growing by huge amounts, enough to satisfy even the most voracious users.

    10. Re: WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      Why are YOU trying to accuse others.

    11. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      It's an indictment from the Grand Jury that heard and saw evidence collected by the FBI. Don't be so fucking obtuse.

    12. Re: WHY are you APOLOGIZING for a PEDO? by toadlife · · Score: 1

      3.5" is a standard size, though some have 2.5".

      I had an 8" Wang.

      --
      I don't always use unix-like operating systems; but when I do, I prefer FreeBSD.
    13. Re:WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      The indictment is pretty straightforward in laying out the feds case against him. I

    14. Re: WHY are you APOLOGIZING for a PEDO? by Anonymous Coward · · Score: 0

      My Wang had dual 8 inchers!

  15. Creep by Anonymous Coward · · Score: 0

    Straight up creep, mother focker.

  16. Yawn by Anonymous Coward · · Score: 0

    Operating systems should not have any remote services running by default. That's obviously a bad idea. It's clearly done purposely. Securing systems is acutally rather easy...

    1. Re:Yawn by Anonymous Coward · · Score: 0

      Yep, shut 'er down!

    2. Re:Yawn by Bert64 · · Score: 1

      MacOS doesn't have these services by default, you have to explicitly turn them on...

      --
      http://spamdecoy.net - free throwaway anonymous email - avoid spam!
  17. c6gunner IMPERSONATING me again? by Anonymous Coward · · Score: -1

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    YOU DEMAND PROOF? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    I DEMAND IT OF YOU & YOU FAIL!

    * c6gunner = "Run, Forrest: RUN!!!

    c6gunner's LYING say I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS

  18. c6gunner IMPERSONATING me STILL again? by Anonymous Coward · · Score: -1

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    YOU DEMAND PROOF? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    I DEMAND IT OF YOU & YOU FAIL!

    * c6gunner = "Run, Forrest: RUN!!!

    c6gunner's LYING say I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS!

  19. So they charged a peeping tom by 140Mandak262Jamuna · · Score: 2

    ... who was looking through windows without drapes ....

    --
    sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
    1. Re:So they charged a peeping tom by AmiMoJo · · Score: 1

      If you see someone left their door unlocked that's not an invitation to enter their house.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    2. Re:So they charged a peeping tom by Sideshow+Mark · · Score: 5, Funny

      ... who was looking through windows without drapes ....

      Um, he was looking through Macs, not Windows.

  20. c6gunner IMPERSONATING me YET again? by Anonymous Coward · · Score: -1

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    YOU DEMAND PROOF? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    I DEMAND IT OF YOU & YOU FAIL!

    * c6gunner = "Run, Forrest: RUN!!!

    c6gunner's LYING saying I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS!

  21. 4th time I've been IMPERSONATED today... apk by Anonymous Coward · · Score: -1

    See subject & the rest listed here + why (butthurt ac who destroyed himself on hosts kernelmode) https://it.slashdot.org/comments.pl?sid=12012911&cid=56473441/ vs. slower usermode (the little fuck that's doing this is a SERIOUS screwup, lol, hence the WEAK butthurt effete attempts @ "impersonating" me, via harassing others).

    * Unbelievable... lmao!

    APK

    P.S.=> That's probably the RESULT of being raised as a "soyboy" weasel for the whimp trying to make me look "bad" impersonating me - RoTfLmAo... apk

  22. If they had such laws in 1954 ... by 140Mandak262Jamuna · · Score: 1

    ... we would have lost a great science fiction writer John McFly

    --
    sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
    1. Re:If they had such laws in 1954 ... by Scarletdown · · Score: 1

      I think you mean George McFly, butthead. :p

      --
      This space unintentionally left blank.
    2. Re:If they had such laws in 1954 ... by 140Mandak262Jamuna · · Score: 1

      Did n't they go back in BTTF VI or VII and change his name from Geroge to John?

      --
      sed -e 's/Chuck Norris/Rajnikant/g' joke > fact
  23. 5th time I've been IMPERSONATED today... apk by Anonymous Coward · · Score: -1

    See subject & the rest listed here + why (butthurt ac who destroyed himself on hosts kernelmode) https://it.slashdot.org/comments.pl?sid=12012911&cid=56473441/ vs. slower usermode (the little fuck that's doing this is a SERIOUS screwup, lol, hence the WEAK butthurt effete attempts @ "impersonating" me, via harassing others).

    * Unbelievable... lmao!

    APK

    P.S.=> That's probably the RESULT of being raised as a "soyboy" weasel for the whimp trying to make me look "bad" impersonating me - RoTfLmAo... apk

  24. 6th time I've been IMPERSONATED today... apk by Anonymous Coward · · Score: -1

    See subject & the rest listed here + why (butthurt ac who destroyed himself on hosts kernelmode) https://it.slashdot.org/comments.pl?sid=12012911&cid=56473441/ vs. slower usermode (the little fuck that's doing this is a SERIOUS screwup, lol, hence the WEAK butthurt effete attempts @ "impersonating" me, via harassing others).

    * Unbelievable... lmao!

    APK

    P.S.=> That's probably the RESULT of being raised as a "soyboy" weasel for the whimp trying to make me look "bad" impersonating me - RoTfLmAo... apk

  25. Parent has some good points... by bussdriver · · Score: 4, Interesting

    The FBI comes in and they image everything you've got that they find.

    You might be safe now but in the future legitimate things you have might become crimes. You don't know what that might be; even if you do, like parent said, your old backups get lost or the old computer in the basement you didn't recycle or give away because you've not wiped it clean and put that off...

    Think about something innocent not this guy's stuff-- and a decade from now the mere possession or mention of such things is a crime. You are not charged with a crime back in time (not allowed) but instead are charged for currently having such materials.

    This could be the Anarchist's Handbook you got online in the 90s because everybody was making a fuss about the silly thing. Then after 9/11 they find that in your stuff and get you as a terrorist!

    Think.

    --
    Democracy Now! - uncensored, anti-establishment news
    1. Re:Parent has some good points... by Anonymous Coward · · Score: 0

      In a decade, porn by consenting legal age women (or anything that someone in the #MeToo crowd might believe, at one time, then or in the future, could possibly have been, in any way, manipulated by a man...and therefore must have made the female involved completely a victim) might be banned and some poor bastard will get railroaded for crappy topless GIF found on his old college 5.25" floppy. They'll track the lady in the image down to testify, which she will gladly do because she is just a retiree with nothing better to do.

    2. Re:Parent has some good points... by Plus1Entropy · · Score: 1

      Lol, AC it's pretty clear from this post that the only "consenting legal age woman" you've ever been around is your own mother.

      --
      Only crack the nuts that crack. You don't put the ones that don't crack in the sack.
    3. Re:Parent has some good points... by Megol · · Score: 1

      It would support your silly rant if you could provide an example of this ever being a problem in a sane, civilized society. Soviet, North Korea or Nazi Germany aren't examples of the later BTW.

  26. Re: Linux/BSD/Pop!_OS version available, too... ap by BeauHD++(19)+BeauHD · · Score: 0

    Um no its not. My mom is a clinical psychologist. She said going by the posts he/she/it is probably bipolar.

    ...and might be creimer ;) J/K (lol)

  27. Way to focus! by ArhcAngel · · Score: 4, Insightful

    I love how most of the comments are debates on whether the guy is a pedo or not and virtually none so far has addressed the fact that this vulnerability has been in use for fifteen years! I can't believe the Mac haters aren't piling on. Come on guys...don't let me down!

    --
    "A person is smart. People are dumb, panicky dangerous animals and you know it." - K
    1. Re:Way to focus! by Anonymous Coward · · Score: 0

      Well, the indictment said he also wrote a version for Windows also, so it wasn't just Macs. Still going 15 years without detection is either pretty impressive, or proof that antivirus software is shit and utterly useless.

    2. Re:Way to focus! by Anonymous Coward · · Score: 0

      Macs don't get viruses so you don't need anti-virus software

    3. Re:Way to focus! by Anonymous Coward · · Score: 0

      Still going 15 years without detection is either pretty impressive, or proof that antivirus software is shit and utterly useless.

      Both and neither. Anti-virus software heuristics are (nearly)* utterly useless shit. Pattern matching against know viruses is very good, though. Hence, antivirus is more like a vaccine to prevent further spreading of a virus and provide herd immunity. It's also why if you do engage in safe software practices (include updates) so there is no actual vector for a virus to infect you, then antivirus software is shit. Obviously, in the real world (at least in Windows) you have to regularly engage in unsafe practices because Microsoft is such an anti-competitive monster that no one trusts them to be a gatekeeper distribution for 3rd party software verification. Seriously, their best effort so far is the Windows Store.

      * It does not an entirely useless job at detect viruses that try a bit of polymorphism or other manipulations, but all the heuristics designed to detect "threats" are only good at creating a lot of false positives that have to be sifted through.

    4. Re:Way to focus! by Anonymous Coward · · Score: 1

      The summary is pretty unclear. So he scans IP addresses looking for RDP/SSH server running then guesses weak passwords. Is that what the fruitfly did? I mean, once he's in what does the fruitfly do that he couldn't do normally via RDP or SSH? And running RDP/SSH isn't usually considered a vulnerability (unless it's on by default); usually it's a feature. The users' weak passwords is their own vulnerability, not a fault of the OS. Unless the OS refuses to allow you to run SSH with a stupidly weak password (I don't know of any that do).

    5. Re:Way to focus! by Anonymous Coward · · Score: 0

      According to the latest Microsoft update...Windows is a service!

    6. Re:Way to focus! by angel'o'sphere · · Score: 2

      I just looked into my task manager on my Mac.
      There is is no fruitly.exe running at the moment!

      --
      Cost free eBook I read (by iBook/Kobo/Amazon/ObookO/Gutenberg etc.): "The Green Odyssey" by Philip Jose Farmer.
    7. Re:Way to focus! by Anonymous Coward · · Score: 0

      Macs don't get viruses so you don't need anti-virus software

      Exactly this is a well known and established fact.. So that means that this can not exist on Macs. LOL... Apple airheads..

    8. Re:Way to focus! by Anonymous Coward · · Score: 0

      Macs don't get viruses so you don't need anti-virus software

      Exactly this is a well known and established fact.. So that means that this can not exist on Macs. LOL... Apple airheads..

      So who has the biggest, most comprehensive, and up to date virus signature database for Macs if I were to purchase one? I’m used to everyone saying they don’t run virus scanners on their PCs either because they’re overrated, so what is the joke? Do you know anything about AV engines or are you blowing dicks?

    9. Re:Way to focus! by Anonymous Coward · · Score: 0

      People installing RDP and SSH generally know better than to use brute forceable passwords (or passwords at all). But this also attacked protocols for iCloud and other "helpful" services that are either on by default or enabled by the vast majority of Mac users.

    10. Re:Way to focus! by Anonymous Coward · · Score: 0

      If you have no AV, how do you know you don't have a virus? You could be using a mac that is completely filthy with viruses and not even know. It's not a good security policy to have a machine with no way to identify infections.

    11. Re:Way to focus! by TheFakeTimCook · · Score: 1

      People installing RDP and SSH generally know better than to use brute forceable passwords (or passwords at all). But this also attacked protocols for iCloud and other "helpful" services that are either on by default or enabled by the vast majority of Mac users.

      They may be enabled by default; but they are still password-protected. It's up to the User to create a Robust password, though.

  28. DAMN by Anonymous Coward · · Score: 0

    macs sure are insecure.

  29. Arrest him? Sounds like he invented Windows10 by Anonymous Coward · · Score: 0

    Let's see: steals keyboard strokes, watches victims via the webcam, and listens in on conversations via the microphone.

    If he's not the author of Win10 then he must surely be one of the top tech people at Google or Amazon.

  30. pix or it dint happen by Anonymous Coward · · Score: 0

    15 year old fruit flies like 14 year olds' bananas

    Now excuse me while I get back to my Mac. Oh wait I don't have one. I have this peculiar aversion against proprietary stuff.

    1. Re:pix or it dint happen by TheFakeTimCook · · Score: 1

      15 year old fruit flies like 14 year olds' bananas

      Now excuse me while I get back to my Mac. Oh wait I don't have one. I have this peculiar aversion against proprietary stuff.

      Right.

      Because Open Source NEVER has longstanding vulnerabilities...

      **Cough** Heartbleed **Cough**

  31. APK is butthurt from the glory hole by Anonymous Coward · · Score: -1

    APK is still butt hurt from all the trucker dick he took down at the glory hole in the Pilot Travel Center off of I81 near his house. It took a lot of effort this past month but he finally earned enough money to cover his rent, bills, and have enough to eat.

  32. The title sounds as if ... by nospam007 · · Score: 1

    It sounds like the FBI's cold case unit filing another 15 year old success.

    When reading the article (yes I know) title should be more like:

    Criminal successfully evades FBI during a 15 year long crime spree.

  33. c6gunner IMPERSONATING me again? by Anonymous Coward · · Score: 0

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    YOU DEMAND PROOF of others here? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    So now I DEMAND IT OF YOU & YOU FAIL!

    c6gunner = "Run, Forrest: RUN!!!

    * c6gunner's LYING saying I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS!

  34. c6gunner IMPERSONATING me again? by Anonymous Coward · · Score: 0

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    YOU DEMAND PROOF of others here? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    So now I DEMAND IT OF YOU & YOU FAIL!

    c6gunner = "Run, Forrest: RUN!!!

    * c6gunner's LYING saying I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS!

  35. c6gunner IMPERSONATING me again? by Anonymous Coward · · Score: 0

    See subject: his FAKEname on a post impersonating me https://linux.slashdot.org/com... & altering /.er's words.

    c6gunner tried to mock me 1st https://linux.slashdot.org/com...

    So I challenge c6gunner to show he did better work than mine & he CAN'T!

    YOU DEMAND PROOF of others here? "I've yet to see you provide any evidence of that." by c6gunner on Monday March 15, 2010 @10:02PM (#31490942) ?

    So now I DEMAND IT OF YOU & YOU FAIL!

    c6gunner = "Run, Forrest: RUN!!!

    * c6gunner's LYING saying I did a MacOS X one - I haven't yet & c6gunner's LYING impersonating me hosts work vs. Intel CPU issues (spectre/meltdown).

    APK

    P.S.=> You say hosts = shit here https://slashdot.org/comments.... ? /.ers & security pros SAY DIFFERENT: /.ers https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments.... https://slashdot.org/comments....

    SECURITY PROS https://slashdot.org/comments....

    REAL RESULTS w/ hosts vs. threats https://slashdot.org/comments....

    EAT YOUR WORDS!

  36. ...And in Other News... by TheFakeTimCook · · Score: 1

    Weak Passwords make for Weak Security.

    " The attack vector included the scanning and identification of externally facing services, to include the Apple Filing Protocol (AFP, port 548), RDP or other VNC, SSH (port 22), and Back to My Mac (BTMM), which would be targeted with weak passwords or passwords derived from third party data breaches." In other words, Durachinsky had used a technique know as port scanning to identify internet or network-connected Macs that were exposing remote access ports with weak or no passwords."

    Film at 11.

    Nothing to see here, move along...

  37. Silly? by bussdriver · · Score: 1

    No.

    You must not know that North Korea exists today? You must not know that Germany was probably the most educated, most literate DEMOCRACY and known for being practical to the point of being "cold" before they descended quickly into extreme despotism and you think my comment is silly? You must not live in the USA, outside a big liberal city either. You must not live in a big liberal city either or you'd get plenty of ideas from the SJW.

    Seriously? an example? ok how about what should be obvious:

    Nude photos of yourself. your a teenager. include others too. Hell, even adults exchange such things so this is not insanity.
    Later, you are an adult and the mere possession of such photos is a crime. We have teens who have been charged with crimes sending out photos of themselves! registered sex offenders...

    Or what I just said, I distinctly remember people being charged with extra crimes and given harsher punishments simply because The Anarchists Cookbook was found on their computer. There are variations out there where it probably wasn't a crime by itself but lumped in... or used to smear somebody (which can do damage in a jury setting or with press coverage etc.) Thought crime BS... materials get your charges raised by implied thoughts in your head..

    --
    Democracy Now! - uncensored, anti-establishment news