"During his civil lawsuit against the People's Republic of China, Brian Milburn says he never once saw one of the country's lawyers. He read no court documents from China's attorneys because they filed none. The voluminous case record at the U.S. District courthouse in Santa Ana contains a single communication from China: a curt letter to the U.S. State Department, urging that the suit be dismissed. That doesn't mean Milburn's adversary had no contact with him." [China Mafia-Style Hack Attack Drives California Firm to Brink]
posted by vidur on Nov 28, 2012 - 12 comments

DEFCON Kids! [more inside]
posted by jeffburdges on Jun 27, 2011 - 15 comments

"Hackers of the world are uniting and taking direct action against our common oppressors - the government, corporations, police, and militaries of the world" says LulzSec (previously) in their latest release, Chinga La Migra. "We are releasing hundreds of private intelligence bulletins, training manuals, personal email correspondence, names, phone numbers, addresses and passwords belonging to Arizona law enforcement. We are targeting AZDPS specifically because we are against SB1070 (previously) and the racial profiling anti-immigrant police state that is Arizona."

#antisec is a new track from nerdcore rapper ytcracker (previously)
posted by finite on Jun 23, 2011 - 47 comments

People who use Sony don't make very good passwords. "None of this is overly surprising, although it remains alarming. We know passwords are too short, too simple, too predictable and too much like the other ones the individual has created in other locations. The bit which did take me back a bit was the extent to which passwords conformed to very predictable patterns, namely only using alphanumeric character, being 10 characters or less and having a much better than average chance of being the same as other passwords the user has created on totally independent systems." [more inside]
posted by -->NMN.80.418 on Jun 7, 2011 - 142 comments

Sony's PlayStation Network and Qriocity have been down since April 20 2011 due to an illegal intrusion. Today Sony announced that user data - birthdate, user name, password, e-mail address, possibly credit card information, and more - has been compromised for its 69 million users, exposing them to identify theft amongst other things. [more inside]
posted by Foci for Analysis on Apr 26, 2011 - 285 comments

An anonymous hacking outfit called "Gnosis" has infiltrated Gawker Media, hijacking the front page and leaking the company's internal chat logs, source code, and content databases along with the usernames, email addresses, and passwords of over 1.3 million users (including Gawker staff). The attack, which was motivated by what the group describes as the "outright arrogance" with which the company's bloggers taunted anonymous imageboard 4chan (semi-previously), affects every site in the Gawker network, including Gizmodo, Kotaku, Lifehacker, Jezebel, Deadspin, Jalopnik, and io9. While most of the leaked passwords are encrypted, more than 200,000 of the simpler ones in the torrent file have been cracked, and the links between account names and email addresses are in plaintext for all to see. Since the integrity of Gawker's encryption methods remains in doubt, it is recommended that anyone who has ever registered an account on any Gawker property change their passwords immediately, especially if the same log-in information is used for other services.
posted by Rhaomi on Dec 12, 2010 - 312 comments

The University of East Anglia's Climatic Research Unit suffered a security breach this week. Hackers made off with thousands of email correspondences between some of the world's top climate scientists, and posted them to the Internet¹.

Tony Hake has posted an article at The Examiner, highlighting what he feels are the most egregious examples of scientists manipulating and hiding data to support the established theories about Climate Change. Some of the scientists involved counter that the quotes are taken out of context, and that "People are using language used in science and interpreting it in a completely different way".

¹ I'm not going to link to them, but the Examiner article mentions where to get them.
posted by Who_Am_I on Nov 20, 2009 - 146 comments

Neurosecurity: security and privacy for neural devices. "An increasing number of neural implantable devices will become available in the near future due to advances in neural engineering. This discipline holds the potential to improve many patients' lives dramatically by offering improved—and in some cases entirely new—forms of rehabilitation for conditions ranging from missing limbs to degenerative cognitive diseases. The use of standard engineering practices, medical trials, and neuroethical evaluations during the design process can create systems that are safe and that follow ethical guidelines; unfortunately, none of these disciplines currently ensure that neural devices are robust against adversarial entities trying to exploit these devices to alter, block, or eavesdrop on neural signals. The authors define 'neurosecurity'—a version of computer science security principles and methods applied to neural engineering—and discuss why neurosecurity should be a critical consideration in the design of future neural devices." [Via Mind Hacks]
posted by homunculus on Jul 8, 2009 - 22 comments

Online communities to become more 'all-encompassing.' If you join the SHC community on Sears.com, all web traffic to and from your computer thereafter will be copied and sent to a third party marketing research firm - including, for example, your secure sessions with your bank! The Sears.com proxy will send your logins and passwords along with a cleartext copy of all the supposedly secure data. But wait, it gets better: you can only view the true TOS once the proxy has already been installed. [more inside]
posted by ikkyu2 on Jan 3, 2008 - 70 comments

Interesting "New Yorker" article about online extortion via DDoS attacks. Call me naive and underinformed, but I had little understanding of how this works. "In the most common scenario, the bots surreptitiously connect hundreds, or thousands, of zombies to a channel in a chat room. The process is called “herding,” and a herd of zombies is called a botnet."
posted by dersins on Oct 7, 2005 - 34 comments

A new twist on paying for Internet porn Although no mention of porn in the CNN story. Anyone ever been threatened like this?
posted by Samuel Farrow on Dec 29, 2003 - 18 comments

Competition to "reverse engineer" mystery program.
Another cool thingy from the HoneyNet Project; they're inviting people to convert a binary file into its original source. So, who's participating?
posted by arnab on May 3, 2002 - 2 comments

Hackers target Cell Phones With the connectivity of cell phones to the internet, hackers have begun to target cell phones, programming prank calls, placing calls to wherever and erasing the software in the phone.
posted by Lanternjmk on Mar 11, 2002 - 7 comments

How to hack grey matter A big security loophole with grey matter powered sites is out there. It lets anyone have the username and password to these sites. Luckly there is a fix for it which can be found here.
posted by thebwit on Feb 23, 2002 - 20 comments

Hackers: Computer Outlaws A TLC show(that I'm 3/4 through) that seems to actually use reliable sources to discuss not just cracker behavior, but also the creative side of hackers, pointing out the developments attributed to some hackers. Now Markoff and Mitnick. Not a bad little show....
posted by dglynn on Jan 9, 2002 - 7 comments

FBI warns Microsoft XP users "The FBI is urging computer users to unplug and don't play when it comes to addressing serious security flaws found in Microsoft's new Windows XP program." "Microsoft admitted this week that there are several serious glitches in the new software. " Really?
posted by headlemur on Dec 22, 2001 - 24 comments

Microsoft's newest version of Windows.... billed as the most secure ever, contains several serious flaws that allow hackers to steal or destroy a victim's data files across the Internet or implant rogue computer software. The company released a free fix Thursday.

A Microsoft official acknowledged that the risk to consumers was unprecedented because the glitches allow hackers to seize control of all Windows XP operating system software without requiring a computer user to do anything except connect to the Internet.
posted by bkdelong on Dec 20, 2001 - 60 comments

"MS releases mother of all IE security patches" Per the article: Microsoft has released a cumulative patch for Internet Explorer which the firm says is a "critical" security precaution against crackers which should be applied "immediately". Time to update/upgrade boys and girls. :)
posted by crankydoodle on Dec 14, 2001 - 11 comments

Hackers: a report on the Internet's vulnerabilities Anyone see the original broadcast of this PBS "Front Line" special? Any good? It airs again Nov. 29, 2001.
posted by fleener on Nov 29, 2001 - 11 comments

AirSnort. The dangerous app with the unlikely name allows users to snatch data being passed over wireless networks, eventually capturing passwords to the network.
posted by o2b on Nov 29, 2001 - 7 comments

Dark Address Space leaves some 100 million hosts completely unreachable from portions of the Internet.
posted by trioperative on Nov 15, 2001 - 2 comments

Silicon Valley backs Senate bill that would allow companies to report computer network attacks to the government without having to worry about the public finding out. The reasoning: it would encourage more companies to report the problems and help the government track down the culprits. A similar bill is in the House.
posted by thescoop on Sep 25, 2001 - 3 comments

Attrition: Evolution. Attrition.org has decided to cease updating their archive of Web defacement mirrors. The reasons being the total lack of appreciation on some part as well as the shear volume of mirrors per day, and the fact that it sucked up what little personal lives the staff already had. Fear not, however, statistics and commentary will still be around - just based on the Alldas mirror and stay tuned for the rebirth of their more informative sections like Errata and Security.
posted by bkdelong on May 21, 2001 - 0 comments

Up to 20% of the internet vulnerable to a virus. There is a new Linux worm virus. Apparently, it steals passwords, installs and hides other hacking tools on infected systems, and then uses those systems to seek other servers to attack. Sys admins are advised to run a check on their servers and upgrade their BIND version.
posted by borgle on Mar 25, 2001 - 5 comments

One million credit card numbers stolen! News at 11! The FBI has gone public with a rather dry account of a huge organized attack on ecommerce sites, exploiting security flaws in NT which Microsoft fixed and offered patches for nearly two years ago.
posted by Steven Den Beste on Mar 9, 2001 - 5 comments

Do as we say, not as we do.
posted by solistrato on Nov 6, 2000 - 15 comments

AIPAC Hacked, Credit Card numbers exposed. This morning the Web site of the American Israel Public Affairs Committee was defaced by Doctor Nuker of the Pakistan Hackerz Club. I didn't think anything of it which was why I missed getting the mirror the first time around. Apparently this is a pretty large organization according to my co-worker, a former Washingtonite. It's the biggest American Jewish lobbying organization in the US from what I hear... which is going to piss people off when they realize their credit card information was leaked in the defacement.
posted by bkdelong on Nov 2, 2000 - 0 comments

Apparently, the conventional wisdom is not quite right. The SDMI's Executive Director says they have "thousands of entries" in their contest to hack the various proposed digital music security schemes. As I pointed out recently in a similar context, the "Linux community" and the population of computer literate, financially motived, non-OS-sectarian hackers are far from being one and the same...
posted by m.polo on Sep 20, 2000 - 6 comments

Western Union's site is down, as hackers have accessed their "secure" database. Western Union's only suggestion so far is to tell all customers to cancel their credit card accounts. Is anything really secure on the internet? Do you trust amazon to hold your credit card numbers, Wells Fargo to keep your checking account private, and Kozmo employees not to pilfer your credit card numbers for fun?
posted by mathowie on Sep 10, 2000 - 8 comments

They bagged the kid who was responsible for all those Denial-of-Service attacks a couple of months ago. He's Canadian.

Here's an interesting legal question: could the US extradite him? The crimes were committed in the US, but he was in Canada at the time he did it, since he worked through the Internet. Whose laws apply?

(By the way, I've seen no indication that the US is considering extradition; I was just curious whether they could extradite him.)
posted by Steven Den Beste on Apr 19, 2000 - 18 comments

The Discovery Channel has a pretty good "Hackers Hall of Fame" but of course they get hacking/phreaking/cracking all munged up. There's a brief bio and short synopsis of activities for each person.
posted by mathowie on Feb 12, 2000 - 0 comments

Uncle Sam wants YOU to solve the internet's problems. President Clinton announced yesterday that, due to a complete lack of knowledge about the internet, it will cost $2 billion in 2001 to develop anti-hacker secuity. Plus they intend on subsidizing college costs for computer science majors that agree to work for the government. Hey if he'd give me just one million dollars, I'd be able to pay off my school costs and hunt down hackers personally, like Boba Fett.
posted by Awol on Feb 11, 2000 - 0 comments

Do you, a, have problems getting to Yahoo? Yahoo was unreachable for much of the morning, and it turns out that it was apparently due to hackers. I saw estimates that the loss of 3 hours worth of traffic meant about 58 million lost page views. How many dollars is that?
posted by mathowie on Feb 7, 2000 - 3 comments

Last night Kevin Mitnick was on 60 minutes (the gist of the interview is quoted here), and I have to say he came off as an utterly harmless geek. He was an information junkie that enjoyed the challenge of cracking firewalls. He never profited from his activities and the affected companies made up their monetary losses. It's a shame he was forced to waste away in prison instead of offer his security expertise to the affected companies.
posted by mathowie on Jan 24, 2000 - 1 comment