Full Disclosure mailing list archives

Re: n3td3v group calls on RSA to clarify their stance

From: n3td3v <n3td3v () gmail com>
Date: Sat, 1 Apr 2006 05:34:20 +0100

No one actually knows how RSA are carrying out their database attacks yet,
hence the reason I called for clarity on the issue. But I really am suspect
about the exact technical setup of the attacks that the RSA are carrying out
against fake logins and their databases. Theres no way however they could
carry out world wide attacks on hundreds of fake login targets, without the
use of more than one ip host. And whats the definition of a bot network,
isn't it more than one computer used to send data? In which case you would
need to define the RSA as using a bot network to send their fake raw data to
fake world wide phishing targets. And if they are, is it ok for everyone
else to join in. No I didn't say I had a botnet, and I didn't say I was
attacking anything, all I asked was for RSA to clarify their stance, to make
it clear that its ok or not ok for everyone to join in the attacks they
recommended via the Cnet news article as  a good method to beat phishers.

On 4/1/06, Morning Wood <se_cur_ity () hotmail com> wrote:

*while RSA are carrying out these attacks, is it legally OK for hackers

to

"HELP OUT" the RSA by pointing a few of our bot net's at some Yahoo and
eBay
fake login web pages that we know about and feed them with fake username
and
password data. We don't want to end up in jail, but since the RSA are

doing

it, so we can tell our lawyers that the RSA recommended the tactic to

us.*

*Much regards,*
*n3td3v international security group*


so... the "n3td3v group" has "a few [of our ] botnets"  did I hear this
right? ( *blink* )
somehow I dont think RSA is using "botnets", which BTW are ILLEGAL in
*most*
countries
( yes, including your precious UK )

I just want to thank the biggest security group ( lol ) for using teh
botz!!!
I am sure Yahoo-Inc, Google, EBay, Microsoft and FooBarBlehCo will thank
you publicly on CNN so we will know how n3td3v group saved us all with
botnets!!!

thanks b0td3v gr0upz,
MW

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Current thread:

n3td3v group calls on RSA to clarify their stance n3td3v (Mar 31)
- Re: n3td3v group calls on RSA to clarify their stance Morning Wood (Mar 31)
  - Re: n3td3v group calls on RSA to clarify their stance n3td3v (Mar 31)
    - Re: n3td3v group calls on RSA to clarify their stance Valdis . Kletnieks (Mar 31)
  - Re: n3td3v group calls on RSA to clarify their stance n3td3v (Mar 31)
    - RE: n3td3v group calls on RSA to clarify theirstance HTRegz (Mar 31)