Archive for May, 2008
untraceable movie

untraceable movie

I just saw a movie called Untraceable. It is cyberterrorism meets Seven. Although it is very violent, it falls short of the pure “torture porn” genre (i.e. Hostel, Saw). They didn’t sensationalize the FBI computer crime team. They made the characters real people with real problems.

The best part of the movie is that it addresses hard societal questions that we are still struggling with. The killer’s greatest weapon was the Internet itself. He used the anonymity and distributed non-centralized power of the net to broadcast killings on the Internet. Once he captured a victim, he would put them in a contraption that would torture them to death based on how many people came to the site. The FBI is at a loss, because their equipment (while it can easily bait & hunt small time phishers, criminal hackers and adults soliciting sex from kids online) it is useless against this serial killers level of software, Internet, and electronics sophistication. They eventually call upon the NSA, who tell them that they are not allowed to use their resources for domestic issues. With the Patriot Act and NUMEROUS presidential NSA acts, I don’t believe this is entirely true. But the movie seems to suggest that it is.

Although, I disagree with the message of giving more power to the FBI & NSA to catch bad guys (as it would require the loss of more civil liberties of law abiding citizens), I definitely recommend this movie.


Movie fact:

The site used by the killer (www.killwithme.com) actually exists. It’s owned by the movie studio and it’s used to promote the movie. In it, users are taken to a replica of the FBI computer used by the character Jennifer Marsh. Her desktop gets hacked by the killer who provides the visitor with four test he/she must complete to deactivate his site.

Man steals $50,000 by taking a few pennies at a time.

Maybe the crime of the century if you ask me. Just like in ‘Hackers’ and ‘Office Space’ a California man has been indicted for a inventive scheme that allegedly siphoned $50,000 from online brokerage houses E-trade and Schwab.com in six months — a few pennies at a time, and using the names of cartoon characters.

A salami attack is a series of minor data-security attacks that together results in a larger attack. For example, a fraud activity in a bank where an employee steals a small amount of funds from several accounts, can be considered a salami attack.

The main idea is to make the change as minuscule as possible so that any single transaction will go completely unnoticed[1] (This is due in part to round-off and truncation error[2]).

http://en.wikipedia.org/wiki/Salami_attack

read more | digg story

DONALD DUKE, CENTRAL BANK OF NIGERIA *SCAM*

Here is another BS email trying to get your personal information>

CENTRAL BANK OF NIGERIA
TINUBU SQUARE LAGOS-NIGERIA
OFFICE OF THE DIRECTOR
Our Ref: CBN/IRD/CBX/021/008
Swift Code: BPH KPL PK,

CONTRACT/INHERITANCE PAYMENT NOTIFICATION WITH C/N:
CBN/NNPC/FGN/MIN/008.

ATTENTION:BENEFICIARY,

Following the protest of the International Community, the World Bank, IMF and the instruction by the President and Commander in Chief of the armed forces (Alhaji Umaru Musa Yaradua) that all outstanding foreign debts especially Next of Kin /Contracts Payment should be released to the beneficiaries forth with unconditionally this first quarter 2008.

From the records of outstanding debts due for payment with the Federal government of Nigeria, your name was discovered as next on the list of the outstanding, who have not received their payments.

We wish to inform you that your payment is being processed and will be released to you as soon as you respond to this letter. Also note that from my record in my file your outstanding contract payment is USD$10 Million dollars (Ten Million United States Dollars).

Please confirm to this office if this is online with what you have in your record and also re-confirm to me the followings.

1) Your full name.
2) Phone, fax and mobile #.
3) Company name if any, profession, position and address.
4) Copy of int’l passport, driver’s license, or any valid ID card. attached to email.

As soon as this information’s are received, your payment will be made to you by Wire Transfer for you to your bank and confirm it.

Regards,
DONALD DUKE,
DIRECTOR OF OPERATION,
CENTRAL BANK OF NIGERIA (CBN).

UK planning to monitor and record every phone call, web page, and email sent by citizens

The Home Office will create a database to store the details of every phone call made, every email sent and every web page visited by British citizens in the previous year under plans currently under discussion, it has emerged.

The Government wants to create the system to fight terrorism and crime. The police and security services believe it will make it easier to access important data as communications become more complex.

Telecoms firms and internet service providers (ISPs) have already been approached by the Home Office, which would be given customer records if the plans were realized.

Only a matter of time before the same happens in the U.S. It might already be underway by the NSA. Who knows.

more at Telegraph.co.uk

LifeLock Guy Hacked :(

457-55-5462 Todd Davis
I think this is a sad day. A sad day indeed. Todd Davis, CEO of Lifelock (his social security #457-55-5462). Todd Davis has promoted his company by advertising his social security number on the web, radio, tv and billboard signs.

My name is Todd Davis
My social security number is 457-55-5462

I’m Todd Davis, CEO of LifeLock, and yes, that’s my real social security number*. Identity theft is one of the fastest growing crimes in America, victimizing over 10 million people a year and costing billions of dollars. So why publish my social security number? Because I’m absolutely confident LifeLock is protecting my good name and personal information, just like it will yours. And we guarantee our service up to $1 million dollars.”

While I’ve always thought that it was a risky way to promote one business (lol), I’ve always believed that it was a good idea. What they do is monitor your credit card and fico information and alert you if there is anything suspicious. It works (you can also do your self for free). But the Life lock service doesn’t protect you 100% from identity theft.
Some guy in Texas took Todd’s personal information and used it for a pay day load (there is not system to actively keep track of the Payday loan market). So the guy was able to get $500. When it was time to pay back the Payday loan (+1million% interest or whatever it is) the Payday store called the REAL Todd Davis (social security #457-55-5462). I think its unfortunate because it seems like a pretty good service. They are one of the few organizations in the U.S. actually trying to help people take on what is now and epidemic with now grassroots effort to slowdown ID theft and financial fraud.

Although Todd Davis was hacked, I believe their product will still be an effective way to be proactive method of protecting yourself from ID theft & financial fraud. But you should definitely take extra steps to safe guard your personal information. Don’t advertise your social security, your physical address, phone number, birthday or critical information.

Its $10 a month. I’m thinking of doing it just so I can contribute to their cause.

Mr Prest Charles *SCAM*

WHOA! Google Mr. Prest Charles and you hit the MOTHERLODE of SCAM-tastic information!

Hello,

Re: collection of fund ($9.6m) under special
arrangement.contact me here (prestcharles20@googlemail.com)

The purpose of this letter is to briefly introduce myself and I would like
to intimate you with certain facts that I believe would be of interest to
you.My name is Mr Prest Charles,I work in executive capacity with CARGO
HANDLING & SECURITY TRUST COMPANY in London(UK) I joined the services of
this company in 1985. Idecided to contact you believing that you will become
my overseas Business assocaites in acquiring an investment placed under our
management more than seven (7) years ago.

I have worked with this company for over 20 years, within this period of
time I watched with meticulous precision on how Head of State and government
functionaries have been moving huge sums of money with the aid of their
foreign partners abroad. They bring in these consignment and declare the
content as jewelries, Gold, Precious Stones, Family Treasure,
Documents,etc.

These people have at one time or the other deposited consignments with us
and their foreign partners, relatives and Next of Kin are Claiming most of
these consignment and a lot more are laying here unclaimed for as much as 7
years, as no available
information to anybody except the depositors, and most of them are dead.
Since the inception of the year 2005,the
Management changed the procedure of claiming of consignments.As soon as you
are able to produce all the information as contained in the secret file of
the company as regard the consignment, it will be released
to you upon demand.

From our records, more than 10 consignments belonging to these people has
been claimed in the past six months and this is why I am seeking for your
co-operation and assistance to help execute this pending deal which has been
unclaimed for so long
as I know no one will ever come forward to claim it because the deceased
left no next of kin.The amount in question is very small compared to what my
office has sent overseas for this people.

I will provide all the documents needed for this purpose as I was the
account officer who handled most this transaction on behalf of this
client.For the release of the consignment, the company will invite you for
the collection, or you may insist that the consignment be delivered to you
instead. I hope to hear from you to enable me provide you with the complete
picture of this deal.

Funish me with the following:

Full Names/Mailing address/Telephone and fax numbers.
contact me here (prestcharles20@googlemail.com)
Expecting your urgent Response.

Mr Prest Charles

*AUSTRALIAN **LOTTO *SCAM?*

**I am always suspicious about free email accounts (i.e. gmail, yahoo, hotmail) attached to what are supposed to be legitimate organization that I am supposed to trust with my personal information. Particularly because personal information is a highly marketable commodity online. ***

*AUSTRALIAN **LOTTO
*
*#24 HIGHER AVENUE HARRIS PARK
GRANVILLE NSW 0152 SYDNEY
AUSTRALIA.

Ref: 639/898/007
Batch: 430456543-DD23 Winning no: GB8701/LPRC

CONGRATULATIONS!! WIHT Euro500,000.OO(FIVE HUNDRED THOUSAND EURO)

Dear Lucky Winner,

We are delighted to inform you of your prize release on the 20th of May
2008, from the Australian Lotto Program.This is a bonus to promote lottery
in Australia which is fully based on an electronic selection of winners
using their e-mail addresses form internet sites. Your email address was
attached to ticket number; 47061725 serial number :
658399904 This batch draws the lucky numbers as follows :
5-13-33-37-42 bonus 17, which consequently won the lottery in the second
category.

You here by have been approved a lump sum pay of Euro500,000.00 (FIVE
HUNDRED THOUSAND EURO) in cash credit file ref: ILP/HW 47509/02 from the
total cash prize shared amongst eight lucky winners in this category.

All participants were selected through a computer balloting system drawn
form Nine hundred thousand E-mail addresses from Canada, Australia ,United
States, Asia, Europe, Middle East , Africa and Oceania as part of our
international promotions program which is conducted annually.

This Lotto program was promoted and sponsored by a conglomerate of some
multinational companies as part of their social responsibility to the
citizens in the communities where they have their operational base.

Further more, your winning details (e-mail address) falls within our
European representative office as indicated in your play coupon and your
prize of US$200,000.00 will be released to you from our regional branch
office in LONDON.

We hope with part of your prize, you will participate in our end of year
high stakes for US$1.3 Billion international draw.

HOW TO CLAIM YOUR PRIZE:

Simply contact our Fiducial/Claims Agent:

THOMAS MOOR.

TEL: +44 704 577 1412

E-mail address : thomasmoor1@gmail.com

Fill this form below and send it to him to file for the claim of your
lottery prize.

LOTTERY WINNERS APPLICATION FORM OF PAYMENT.

FULL NAMES………………………………………
ADDRESS………………………………………..
SEX………………………………………….
AGE…………………………………………
COUNTRY………………………………………
COUNTRY OF RESIDENCE……………………………
OCCUPATION……………………………………
TELEPHONE/MOBILE NUMBER………………………..
EMAIL…………………………………………
WINNER REF/BATCH NO………………………APPROVED FOR PAYMENT.

Please quote your reference, batch and winning number which can be found on
the top left corner of this notification .

For security reasons, we advice all winners to keep this information
confidential from the public until your claim is processed and your prize
released to you.

This is part of our security protocol to avoid double claiming and
unwarranted taking advantage of this program by non-participant or
unofficial personnel.* *
Congratulations once again on your winnings!!!

Yours faithfully,

MR. POND SMITH
(Online Coordinator)*
*CUSTOMER CARE : 480 NCA 87950
AUSTRALIAN LOTTO PROGRAMME.
*

YAHOO AWARDS *scam?*

YAHOO AWARDS CENTER
From The Desk Of The Manager
International Promotion/Yahoo Award Center
124, Stockport Road, Longsight,
London M60 2DB- United Kingdom
This is to inform you that you have won a prize of Four Hundred, Twenty Thousand Pounds(420,000.00) for the month of January, 2008 Prize promotion which is organized by the YAHOO AWARDS & WINDOWS LIVE. YAHOO collects all the email addresses of the people that are active online, among the millions that subscribed to Yahoo and Hotmail and few from other E-mail providers. Twenty Six people are selected monthly to benefit from this promotion and you are one of the selected winners.
PAYMENT OF PRIZE AND CLAIM
Winners shall be paid in accordance with his/her Settlement Center. Yahoo Prize Award must be claimed not later than 15 days from date of Draw Notification. Any prize not claimed within this period will be forfeited. Stated below are your identification numbers:
BATCH NUMBER: MFI/06/APA-43658
REFERENCE NUMBER: 2006234522
PIN: 1206
These numbers fall within the U.K Location file, you are requested to contact our fiduciary agent in U.K and send your winning identification numbers to him. Below you will find a Documentation Form, requesting your required particulars.
YAHOO ONLINE DOCUMENTATION FORM
FULL NAMES: _______________________________________________________
ADDRESS: _______________________________________________________
CITY:_______________________ STATE: _______________________ ZIP: ______
PHONE AND FAX NUMBER: ____________________________________________
COUNTRY: ___________________________________________
SEX: _____________AGE: __________ MARITAL STATUS: __________________
OCCUPATION:_________________________________________________________
EMAIL ADDRESS: ____________________________________________________
NATIONALITY: _______________________________________________
You are required to fill and submit the above particulars to our Overseas Claim/U.K Payment Unit with the email address below
Overseas Claims/Exchange Online Payment Unit
Contact Person: Name: Mr. Gary Paul
Tel: 44 704-570-5106
Fax: 44 870-916-0275
Email: maill2winers@yahoo.co.uk
CONGRATULATIONS!!!
At your disposal, we remain blessed.
Yours in service,
YAHOO AWARD PROMOTIONS

Milton Keynes Book Keeper *has anyone else received this?*

*is this a scam?* I’m honestly not sure of this one.
There is a city and a few organizations with the name “Milton Keynes”. However the person who sent this:

Subject: PART TIME JOB OFFER (URGENT REPLY)
From: “Brian Howard”

Looks like a scammer. Brian Currie has been synonymous with the city of Milton Keynes since 1977. That is a legitamit company with (what looks like) NO affiliation with the person who originally sent this email.

Good Day,

Would you like to work online from home and get paid weekly? Milton Keynes
Textiles LTD needs a book-keeper in the United States. I want to know if
you will like to work online from home and get paid weekly without leaving
or affecting your present job? This is safe and legal.

My company produces various clothing materials,and traditional costumes
which we have clients we supply weekly in the states and canada. My
clients make payments for our supplies every week in form of payment which
are not readily cash able outside the United States, So we need someone in
the States to work as our representative and assist us in processing the
payments from our clients and I will pay him/her weekly salary.

All you need do is receive these payments from our clients in your
vicinity and get it cashed then deduct your weekly fee and forward the
balance to our respective agents. As soon as we confirm any payment coming
to you, I will let you know and I will provide instructions on how to
process the payment.

Please forward the following info to my email

Full Name:
Full Contact Address( not P. O. Box) to include city, state and
zip code:
Phone Number/Fax:
Occupation:

Regards,
Brian Howard
+447024039666

FOR USA AND CANADIAN RESIDENTS ONLY

DARPA Wants Matrix-style Virtual World for Cybergeddon

The US military’s famed scientific wingnut farm, DARPA*, has released full details of its planned “National Cyber Range” – a mighty network which could be configured to simulate the cyberspace battlefields of the future. This would allow America’s fighting nerds to train for the net conflicts of tomorrow, mounting attacks on simulated enemies..

read more | digg story