Re: HBGary Mirrors?

[Chris M <chris () nullroute net>]

Some thoughts..

Whether they did or not is probably way past irrelevant now. I'd probably
wager the site owners were just pissed off with the massive
bandwidth-consumption from all the scandal. Its not beyond the stretch of
the imagination that private companies were hired to "make these go away" -
if we've learned anything from the disclosed information its that conspiracy
is very real.

As they were distributed via torrent, everyone and their mother (not to
mention every company with HBGary as a client) has a copy, if not for the
chuckles, then to assess their own exposure given the data that was leaked -
which should have been main priority for everyone involved in the breach.
Client confidentiality explosion. PINs, passwords, bags of personnel data
which could be leveraged in a social engineering attack.

Given the timescale and hopefully the proper education of all parties
identified and involved in the disclosures, you would think the data
enclosed is almost useless now to an attacker - but unlikely.


On Fri, Feb 18, 2011 at 4:24 PM, ck <c.kernstock () googlemail com> wrote:

> So, the FEDs shut down all mirrors of the HBGary files - or didn't they?
>
> ck
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.grok.org.uk/full-disclosure-charter.html
> Hosted and sponsored by Secunia - http://secunia.com/



-- 
 I’m a hot-wired, heat seeking, warm-hearted cool customer, voice activated
and bio-degradable. I interface with my database, my database is in
cyberspace, so I’m interactive, I’m hyperactive and from time to time I’m
radioactive.

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/