Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: [PEN-TEST] ...

Re: [PEN-TEST] ...

From: bacano <bacano_at_ESOTERICA.PT>
Date: Sun, 5 Nov 2000 17:01:36 -0000

It is well documented on the new Richard Power book, Tangled Web ... i'm on
that part right now eheh

[ ]'s bacano

----- Original Message -----
From: "Curphey, Mark (ISS Atlanta)" <MCurphey_at_ISS.NET>
To: <PEN-TEST_at_SECURITYFOCUS.COM>
Sent: Saturday, November 04, 2000 11:27 PM
Subject: Re: [PEN-TEST] ...

> John Austen was the arresting police officer in this case. John now
lectures
> computer crime at Royal Holloway's Information Security Masters
> http://isg.rhbnc.ac.uk/John_Austen.htm in London, where the Citibank hack
is
> an annual case study lecture. I can't remember the entire details (it was
> several years ago when I graduated) but the account below is pretty
> accurate.
>
> -----Original Message-----
> From: J. Oquendo [mailto:intrusion_at_ENGINEER.COM]
> Sent: Friday, November 03, 2000 8:29 PM
> To: PEN-TEST_at_SECURITYFOCUS.COM
> Subject: Re: ...
>
>
> >>>>>
> Bob, your message seems to imply that I am misinforming. Where
specifically
> do you think I have misinformed?
> "Re-check" what?!
> >>>>>
>
> Whoa... I Shoulve addressed this to Bob myself as I was only meaning to
> answer This message. But since you bring it up I should only inform you of
> the following: During the past few months I've had the opportunity work
out
> here in New York with some really great people one of them being top
> security wiz/guru whom was actually working with Citibank at the time of
> this incident. We've spoken about it frequently as we are both in the
> security field, (security engineering, product engineering, etc)
killall -9
> info... Anyways this happened according to a source on possibly HP-UX (I
> have to confirm what flavor Unix but will send a pvt msg to anyone that
> wants to know.) Anyways according to the source, the actual hack was
caught
> from the beginning and was separated and monitored throughout the whole
time
> in an effort to catch the perpetrators.
>
> S'from what I've heard, would the person lie? Highly doubtable and I'd put
> my faith and trust in him.
>
> >>>>>
> 1] where is your head at?
> 2] can you get your ego out of this problem?
>
> Fisticuffs, anyone?!
> >>>>>
>
> 1] S'been on the underground comp security scene for the past 4 years
> 2] I've no ego problem you've a perception problem perhaps
>
> Fisticuffs? Over an answer? Get a life.
> >>> Bob <bob_at_cavu.com> 10/31/00 12:27PM >>>
> Within the past one to two three years, CitiBank was relieved of a large
> amount of money electronically by Russian crackers. I believe the total
> was about US$10,000,000. The money was not recovered and the crackers
> were not identified or caught.
>
> Bob
>
> ______________________________________________
> FREE Personalized Email at Mail.com
> Sign up at http://www.mail.com/?sr=signup
>
> ______________________________________________
> FREE Personalized Email at Mail.com
> Sign up at http://www.mail.com/?sr=signup
>
Received on Nov 06 2000

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]