Internet Security: Are You at Risk?. Dan Massey Colorado State University November 10, 2004. Some Motivation.
Colorado State University
November 10, 2004
The asking price for use of a network of 20,000 zombie PCs: $2,000 to $3,000. Such networks typically are used to broadcast spam and phishing scams and to spread e-mail viruses designed mainly to create yet more zombies.
We recently noticed one or more attempts to log in to your Citibank account from a foreign IP address and we have reasons to believe that your account was used by a third party without your authorization. If you recently accessed your account while traveling to Brasil, the unusual login attempts may have been initiated by you.
…<visit some website that will ask for account data>…
If you choose to ignore our request, you leave us no choice but to temporally suspend your account.
From My Bank’s Website:
At (BigBank), ensuring the security of your online information is
important to us, and that's why you can rest assured that no one but
Wells Fargo has access to your information.
Signing on to view your accounts from the (BigBank) Home Page
is safe. The moment you click the Sign On button, your username and
password are encrypted using Secure Sockets Layer (SSL) technology,
keeping your information secure.
System Relies on You to Install Updates
A visit from the FBI
By Scott Granneman, SecurityFocus
Posted: 28/01/2004 at 13:02 GMT
A favorite trick is to surreptitiously turn on the Webcam of an
owned computer in order to watch the dupe at work, or watch
what he's typing on screen. This part isn't surprising. But Dave
had countless screenshots, captured from impounded machines
or acquired online from hacker hangouts, where the script kiddie,
after watching for a while, just can't help himself any longer,
and starts to insult or mock or screw with the duped owner.
<snip> A man was working a crossword puzzle online when
the hacker helpfully suggested a word for 14 Down
Akamai DDoS Attack Whacks Web Traffic, Sites
June 15, 2004
An apparent DDoS (distributed denial of service) attack on the DNS run by Akamai Technologies Inc. slowed traffic across the Internet early Tuesday and brought the sites of the firm's major customers to a screeching halt for roughly two hours.
to exploit a known microsoft security hole
these 75K did not want to provide resources!