In effect, spammers forced Blue Frog out of business.So does getting hacked always equal going out-of-business? Well, no, not always.Sony's PlayStation Network was severely hacked earlier this year, but they're still in business. So what's the difference between Sony and these other guys? Sony was so publicly humiliated that public opinion actually turned against the hackers, and gave Sony PSN some time to recover its footing.DigiNotar, Distribute.IT, Cloud 9 and Blue Frog weren't big enough for all the details to come out during their troubles and they failed to win public opinion (trust) as a result, and then they suffered the consequences. It's something that all smaller companies should take into consideration and prepare for.Or else, they could be the next one to be identity security Oklahoma forced out of business.Updated identity security Oklahoma to add: Submitted by a reader Going out of business is not always the worst possible result of a hack. fact act Ligesh (a man with known personal issues), committed suicide after an attack on budget webhosting company VAserv was linked to apparent vulnerabilities in HyperVM software. The hackers later posted to pastebin.com that the attack was the result of VAserv's poor password management rather than any HyperVM vulnerabilities. Here's a fairly standard bank phishing e-mail, targeting a bank in India:Nice touch with that "Beware of Phishing" warning…Let's look at the attached HTML file:You got to be kidding me? The page has redirection tohttp://amen.fr.softms.com.netwayexchange.com.liberty-textiles.org.v2nmobile.com.manchesteraircooled.com.blackcountrymortgages.com.cardiorenew-europe.com.identity security Oklahoma solhosts.com.giveupthecigs.com.extravite.identity security Oklahoma com.taxrepay.co.uk? getting your free credit report That hostname can't possibly work…Except it does.The redirection goes to reserve.bank.minecraftarena.fr.
And the front page of minecraftarena.fr shows a fake "account suspended" message.
Nice touch.The phishing page looks like this:The ultimate target of the attack is to collect bank logins and credit card numbers:Thanks to Ravikiran for help. Have you looked at a geek challenges such as the t2 Challenge or 0x41414141.com but identity security Oklahoma never got very far?Now is your chance to see behind the scenes on how such a challenge is solved. The t2 Infosec Event has published a detailed write-up on how the 2011 Challenge was solved.
Timo TerŠ“s actually won a free ticket with his detailed write-up [PDF]. Here's a link to the original challenge if you want to try it by yourself.Would like to attend t2? (Act soon, space is limited, and registration closes on Oct 24th.) I love the Internet.Think about everything it identity security Oklahoma has brought us. credit card report Think about all the services we use, all the connectivity, all the entertainment, all the business, all the commerce.And all these changes identity security Oklahoma are happening right now. They are identity security Oklahoma happening during our lifetimes.I'm pretty sure that when they will be writing history books hundreds of years from now, our generation will be remembered as the generation that got online.
We will be remembered as the generation that built something really and truly global.But the Internet has problems too.
No comments:
Post a Comment